I’m an information security and assurance consultant, and in one form or another I help organisations and senior leaders design, implement and operate effective cyber security practices.

My career to date has been a mixture of theoretical and applied research, training and education, and specialist/engineer roles. I’ve seen things in practice from a wide range of perspectives. A certified ISO 27001 ISMS Lead Implementer, I’ve also worked in the HMG accreditation framework, using IS1/IS2 for technical risk assessment and treatment.

Outside of the day job I’m a member of ACM and BCS, and an RSA Fellow. I’m the Chairman of Dorset BCS. My blog contains updates on BCS activities in Dorset as a consequence.

About this blog

My goal is to bubble to the surface developments of interest in the wider industry press, and to discuss topics of interest. The content will always be in a permanent state of draft.