Cyber Security Advisory
Providing practical and empowering advice
Based in Brisbane, Queensland, Positive Cyber provides progressive, practical and holistic cyber security consultancy advice throughout Australia.
We have extensive experience and capability in cyber security governance, risk management, compliance and training across multiple industry sectors.
We are strong exponents of partnership-building between cyber security professionals and stakeholders in organizations, producing the best results through meaningful collaboration.
Cyber security should be everybody’s responsibility and empowering staff to play their part in the management of cyber security risk is the best avenue to success.
Cyber security is a very broad field, encompassing people, process and technology. Having more than twenty years of experience in the Brisbane cyber security community, we utilize a carefully curated professional network of senior cyber security specialists to complete projects with the right knowledge and experience for each engagement.
Principal Consultant - Mark Carey-SmithAreas of Expertise
Training
Empower staff through the design, implementation, evaluation and improvement of cyber security education, training and cultural enhancement programmes. We can work with your staff or design and implement our own bespoke training program on any aspect of cyber security education for any staff - executive, technical, whomever.
Cyber Security and Third Party Risk Management
Pragmatic and practical approaches to identifying, analysing and understanding how cyber security risk contributes to enterprise risk and how risks can be managed effectively and appropriately to meet organisational risk appetite.
Design, implementation and improvement of third-party cyber security risk management business processes. This includes collaborating with vendors to assess and improve cyber security practices and ensure compliance with contractual requirements.
Enterprise Uplift
Design, implementation and reporting of enterprise cyber security maturity assessment frameworks and associated improvement plans for identifying, analysing and understanding how cyber security contributes to enterprise risk and uplifting enterprise cyber security practices.
Enterprise application and assessment of cyber security management frameworks including ISO 27001, NIST Cyber Security Framework, and Cloud Security Alliance Cloud Controls Matrix.
Cyber Incident Resilience
Design, creation and implementation of cyber security incident response plans and procedures.
Design and facilitation of cyber security tabletop discussion exercises to explore, understand and improve incident response knowledge and skills.
Communication and Facilitation
Interpersonal, communication and presentation skills including presenting and facilitating workshops, round tables, cyber security committees, academic and industry conferences.
Virtual Cyber Security Manager
Virtual Information Security Manager services to provide cyber security assurance and risk management expertise to organizations lacking in-house cyber security staff or to augment existing operational staff with expertise and assistance in strategic and tactical cyber security risk management.
Get in Touch
Email: info@positivecyber.net
Phone: (+61) 431 378 276
LinkedIn: www.linkedin.com/company/positive-cyber/