Essential Eight uplift
Assessment and uplift across the ASD Essential Eight maturity model.
What you get
- A current maturity rating across all eight strategies
- An uplift plan to your target maturity level
- An evidence trail for each mitigation
Compliance readiness
Compliance you can prove.
Get audit-ready against the frameworks Australian businesses are actually asked for.
Certification is won on evidence, not intent. We get you ready to pass by mapping your environment to the framework, closing the gaps, and building the evidence trail an assessor expects.
SMB1001 certification readiness
We hold SMB1001:2026 Gold ourselves. We will get you ready to certify.
What you get
- A gap review against your target SMB1001 tier
- Step-by-step remediation to close the gaps
- An evidence pack ready for the certifying assessor
ISO 27001 readiness
Scope, gap analysis, and ISMS groundwork toward ISO 27001 certification.
What you get
- Scoping of your Information Security Management System
- A gap analysis against Annex A controls
- Core policies and the documentation an auditor expects
Privacy Act / APP uplift
Map your data, meet the Australian Privacy Principles, prepare for reform.
What you get
- A data map of what you hold and where
- A gap review against the Australian Privacy Principles
- Practical changes to be ready for the 2026 Privacy Act reforms
How it is shaped
Usually a defined programme with milestones toward your certification or audit date.
The rest of the practice.
Offensive testing
We attack your systems the way a real adversary would, then hand you a ranked fix list.
Read more
Defensive & advisory
Ongoing security leadership and review, without hiring a full-time CISO.
Read more
Secure software builds
The build muscle behind our own regulated SaaS, applied to yours, security-first.
Read more