GRC · Security Engineering
Where policy meets
implementation.
GRC consulting for SMBs — security gap assessments and identity governance reviews that tell you exactly where you stand and what to fix first.
Assess
Where you stand
Evaluate your posture against frameworks. Find what’s missing before someone else does.
Document
What you require
Policies, standards, and procedures that reflect how your environment actually works.
Implement
Controls that hold
Controls that satisfy the framework and hold up under technical scrutiny.
Verify
That it’s real
Evidence that what’s documented is what’s deployed — not just what’s assumed.
Services
Available for consulting
Available for consulting
& contract work
Gap Assessments
Evaluate your current security posture against frameworks such as NIST CSF 2.0, SOC 2, PCI-DSS, and ISO/IEC 27001 — with a prioritized roadmap to close identified gaps.
IAM Governance Assessment
Assess your identity program against access control best practices — MFA coverage, joiner-mover-leaver process, privileged access, and SSO posture — across Okta, Entra ID, and AWS IAM.
Consulting & Contract Work
Let’s work together.
Available for project-based engagements, staff augmentation, and retainer work.
Get in TouchAreas of focus
Get in Touch
Not sure what you need?
Not sure what you need?
That’s a fine place to start.
Send a message about your environment and I’ll let you know how I can help — or point you in the right direction if I can’t.
Send a Message