Security-led product engineering for teams shipping in regulated environments.

vCISO, ISO 27001, 24x7 SOC at enterprise scale. AWS foundations, web apps, and applied AI — distributed, async-friendly, senior end to end.

Start the conversation

View selected work

AWSGCPGoogle SecOpsSentinelOneWizTenableMicrosoft IntuneMicrosoft PurviewTheHiveTerraformNext.jsCircleCIAWSGCPGoogle SecOpsSentinelOneWizTenableMicrosoft IntuneMicrosoft PurviewTheHiveTerraformNext.jsCircleCI

Digital health platform

Australia

ISO/IEC 27001 + vCISO

Global SaaS

AU / EU / US

24x7 SOC stand-up · Google SecOps

Multi-cloud enterprise

Global

AWS GuardDuty · GCP SCC · TheHive

Financial services

APAC

SentinelOne EDR · ~10K endpoints

Cloud-native enterprise

Global

Wiz CSPM · vulnerability mgmt uplift

0K+

Endpoints secured or migrated

AWS accounts under unified threat detection

0K+

GCP projects continuously monitored

Capabilities

Security first. Then the products built on top of it.

A senior security practice anchors the work. AWS, web, and applied AI ride on the same foundations—so your roadmap does not fracture across vendors.

Security

vCISO advisory, security operations, and hands-on hardening across cloud, identity, endpoint, and SaaS.

AWS cloud

Landing zones, containers, and secure operational foundations.

Web development

Next.js apps, design systems, and performance-first frontends.

AI solutions

Agents, RAG, evaluation, and safe rollout to users.

Selected work

Interfaces, intelligence, and infra—shipped as a system.

Representative engagements across web rebuilds, grounded AI, and AWS hardening.

Browse all case studies →

Security

ISO 27001 + vCISO for a digital health platform

Part-time CISO advisory and full ISMS build-out to land ISO/IEC 27001 certification for an Australian digital health services and software organisation handling sensitive patient data.

Security

Global 24x7 SOC stand-up with Google SecOps

Designed and operationalised a scalable SIEM/SOAR and SOC operating model across cloud, identity, endpoint, enterprise SaaS, and network telemetry for a global enterprise.

Security

Multi-cloud threat detection across ~300 AWS accounts and ~1,000 GCP projects

Architected and rolled out AWS GuardDuty and AWS Security Hub at organisation scale, and supported Google Security Command Center across the full GCP estate, with unified case management via TheHive.

Next.jsReactTypeScriptTailwind CSSRadix UIZustandNode.jsPythonPostgreSQLRedisDockerTerraformOpenAIAnthropicLangGraphAWS ECSCloudWatchNext.jsReactTypeScriptTailwind CSSRadix UIZustandNode.jsPythonPostgreSQLRedisDockerTerraformOpenAIAnthropicLangGraphAWS ECSCloudWatch

Calm delivery. Opinionated craft.

A snapshot of recent engagements—scope, scale, and the kind of evidence we’d want to see from a partner.

ISO/IEC 27001

ISMS established and certification achieved for a digital health platform handling sensitive patient data.

Google SecOps SOC

Around 20 major log sources onboarded in roughly two months, with MITRE ATT&CK-aligned detection coverage and 24x7 MSSP plus internal L3 model.

SentinelOne EDR

Migration from Sophos completed across approximately 10,000 endpoints globally, with policy tuning and improved detection and response.

Ready for a build that respects your constraints—and your users?

Tell us what “done” looks like. We'll reply with a concrete plan, timeline options, and where we'd start in week one. Async-friendly across timezones; we adapt to yours.

Start the conversation

Loading…