I established Evolve Enterprise Consulting to support small and medium enterprises and to help them navigate the increasingly challenging area of information security. Throughout the last ten years I have increasingly developed my understanding of how to make Information Security systems work effectively in smaller organisations where the challenges of maintaining effective security at an affordable price are particularly acute. I have developed my skills throughout a professional career working in Management Consulting, where I led a range of transformation projects for international organisations, but also as an Operations Director in various SME businesses.

I am experienced in designing, implementing and running the management structures and processes to mitigate the risks to an organisation’s information and data. My approach is to work with each organisation in a collaborative venture to ensure that any solution meets the needs of the business whilst maintaining the core, and effective, elements necessary to keep their information secure. The approach takes in the whole organisation and is based upon the elements identified in the ISO 27001: Information Security Management standard. Whilst this is an all-encompassing standard, only the elements that are necessary and will make the highest impact, dependent upon the available resources are deployed. In all cases the ultimate decision of what to do lies with the managers of the business.

As well as information security I have experience in the closely associated areas of Business Continuity and Disaster Recovery planning and GDPR (the European Global Data Protection Regulation or the Data Protection Act 2018, as it is in the UK).