Services
Four core practice areas built on decades of cybersecurity leadership in financial services and consultancy.
AI and Agentic AI are the most significant shift in the threat landscape since cloud computing — and most security programmes are not keeping pace. I help organisations understand what it actually means to secure AI systems: autonomous agents, LLM-powered workflows, AI supply chains and the new attack surfaces they introduce, from prompt injection to model poisoning to uncontrolled agent escalation.
Whether you are adopting AI tools, building AI-powered products, or trying to govern AI risk at the board level, I bring both the technical depth and the strategic clarity to make your AI security posture real — not just a policy document.
Cryptography is the foundation of every digital security control — and most organisations have accumulated years of cryptographic debt without realising it. I conduct in-depth reviews of cryptographic architectures, identify weaknesses in PKI, TLS and key management, and design migration paths to quantum-resistant standards (FIPS 203/204/205).
With the standardisation of ML-KEM, ML-DSA and SLH-DSA in 2024, the post-quantum migration clock is ticking. I help teams understand the timeline, prioritise their most at-risk systems, and build a pragmatic transition plan.
Security awareness and technical training that actually sticks. Drawing on my experience as a lecturer at TIAS Business School, I design and deliver training that meets audiences where they are — from hands-on technical deep-dives for engineering teams to clear, jargon-free sessions for business leaders.
Available for conference keynotes, panel discussions and corporate events on topics spanning post-quantum cryptography, the evolving threat landscape, building security culture, and the future of regulatory compliance. I translate complex technical and regulatory subjects into narratives that resonate with mixed audiences.