I am an outcome focussed Information Risk and Security Leader with more than two decades of experience in strategic, operational, advisory and technical leadership roles for blue-chip organisations across multiple sectors.

I hold current ISACA CISM and CRISC certifications, am a founding partner of the South East Cyber Resilience Center, and sit on the international board of advisors for the EC Council.

I also offer strategic advisory services to start up and growth phase cyber security businesses and am open to NED opportunities.


I design and implement information security and risk management strategies that transform organisational maturity and capability; combining deep strategy, policy and stakeholder management skills with extensive technical, operational and programme delivery expertise to drive and embed change into large, complex organisations.


I specialise the in the design, build, operation and transformation of Security Monitoring and Incident Response Capability. From design and implementation strategy to running major security incidents I ensure People, Process and Technology are aligned to effectively and efficiently protect company assets against known and unknown threats.


I ensure engagement in security vision and strategy at senior executive level, drawing on my extensive business management and consultancy background to work closely with senior and technical management teams of global organisations. A skilled leader of multi-disciplinary internal, offshored and outsourced teams, I am highly effective in stabilising and improving security teams by providing focus, direction and leadership, especially leading teams through significant periods of transition.