Resources
Practical content for cybersecurity consultants, CISOs, SMBs, mid-market organisations and compliance teams: obligations, evidence, documentation, risk, e-learning and controlled use of AI.
Published guides
NIS2 auditable evidence
A practical method for turning NIS2 obligations into tracked actions, clear ownership and auditable evidence over time.
European cyber compliance
Why cyber requirements keep accumulating in Europe, and how to turn them into a structured, traceable and defensible work programme.
ISO 27005 risk analysis
A practical approach to ISO 27005-style risk analysis that stays readable, workbook-friendly, human-reviewed and MONARC-compatible.
Cyber Assistant client data confidentiality
The safeguards to expect when querying sensitive client documents through a Cyber Assistant: separated client spaces, visible sources, Zero Data Retention and human validation.
cyber awareness audit evidence
Why cyber awareness needs to be run as an ongoing programme with campaigns, reminders, completion tracking and exportable evidence.
cyber audit evidence
The most common mistakes in cyber audit evidence, and a practical way to make a compliance file more readable, consistent and defensible.
AI client documentation cybersecurity consultants
How cybersecurity consultants can use AI on client documentation to accelerate delivery while preserving confidentiality, sources and human validation.
SMB mid-market cyber maturity
A realistic path for SMBs and mid-market organisations that want to improve cyber maturity without launching too many disconnected workstreams.
