How it all started...
Having spend close to two decades in the Cyber Security world starting off from the days of grey hat hacking all the way to Enterprise Risk Management, we have seen how bespoke solutions seem to cater to the requirements of individual business better than pre-built solutions. What fits one may not be suitable for the other owing to the nature of the business and the ever changing security landscape.
This realisation has led to the humble beginning of Springtec Consulting Ltd, a firm which was started in 2017 and continues to provide clients with customised advisory services. We proceed with the belief that an acceptable level of security can be achieved without spending a fortune on all sorts of security solutions but with good business processes and careful management of resources along with user awareness, which forms the backbone of any business.
So no matter what industry your business is, how big or small you consider yourself or what chalenges you have, we would be able to advice you on all aspects of Information Security, Data Privacy, Compliance and Business Continuity.
How we can help...
1
Security Management
Having worked across numerous sectors helping manage operational security and establishing a full fledged security teams we are able to step into any interim senior roles to evaluate the operational security efforts and materialise the team members as required.
2
ISO27001 Certification
With over 18 years of experience implementing, consulting and auditing in various aspects of the ISO27001 standard, we are able to support all aspects of the ISMS as a whole or in part. We can also act as the internal stakeholder to act as the liason with the external audit as part of the certification.
3
Review/ Assurance
With years of experience reviewing contracts, liaising with vendors, being part of service review discussions, reviewing architecture, white boarding solutions and working on key busines operations, we are able to conduct information security and compliance audits/ reviews to suit most requirements.
4
Data Protection/ Privacy
We have over the years, crossed paths with numerous data protection standards/ legislations including the likes of DPA & GDPR. With a certified 'Privacy Technologist' (CIPT) as part of the team we are able to provide guidance on data protection aspects around the organisation's handling of personal data and current legislatory requirements.
5
Security Recruitment
Having the right candidate for the role makes a massive difference, especially for a small to medium business. With over 100 interviews conducted over the last few years, we can help with identifying your requirements, putting together the right job description, perform cv reviews, train you as to what to look out for or even be part of the process in candidate selection.
6
PCI DSS
With an ex QSA part of the team, we are able to informally help with your PCI DSS requirements. If you are submitting your SAQ for the first time or require help with establishing the scope, we can help with a one off guidance or taking over your submission on your behalf as a virtual provider. We can also assist with essentia documentation.
Experienced Cyber Security Consultant with a myriad of experience in different roles ranging from Head of InfoSec, Security/ Enterprise Architect, Governance Risk and Compliance Specialist, Cyber Security Consultant, External Assessor, Privacy Consultant to name a few.
Available for short term/ bespoke engagements or for B2B networking.
Further details can be found on LinkedIn
Certifications held over time
ITIL v4 Foundation
ITIL v3 Foundation
Cert Information Privacy Technologist (CIPT)
Cert Security Incidents Specialist (CSIS)
PCI-DSS Qualified Security Assessor (QSA)
Cert Information Systems Auditor (CISA)
Cert Information Security Manager (CISM)
ISO27001 Lead Implementor
BS 25999 Implementor