I help global manufacturing enterprises manage cybersecurity risk in environments where downtime means safety incidents and production losses.
What I do
Information Security Management • Cybersecurity Governance • Risk Management • IT/OT Security • Enterprise ISMS
15+ years specialising in information security and cybersecurity governance at enterprise scale across international manufacturing operations.
Featured content
Latest from the blog
The OTI Score Needs a Partner: Organisational Resilience Dale Peterson’s OTI Impact Score addresses the industry signal problem. The partner it needs is organisational resilience, the ability to coordinate internally before communicating externally. 10 March 2026
The ISMS beyond the certificate Every organisation has an ISMS. Most of them don’t have a management system. Why the compliance model no longer satisfies, and what a functioning ISMS actually looks like. 3 March 2026
Response to Dale Peterson: Asset Inventory Isn’t Premature Consensus, It’s Operational Necessity Dale Peterson asks where the evidence is that OT asset inventory reduces incidents. From building a global OT security programme across 40+ manufacturing sites, here are the answers. 2 March 2026
Your Recovery Targets Are Probably Right. Your Ability to Meet Them Probably Isn’t. Recovery targets derived from a solid BIA are the right foundation. But five realities sit outside that formal scope, and they’re where plans actually break down in practice. 24 February 2026
Is Your Manufacturing Company’s Vulnerability Management Ready for What Comes Next? AI-driven vulnerability discovery is outpacing OT remediation cycles. What manufacturing security teams need to know about software composition visibility, response planning, and the growing gap between known and fixed. 19 February 2026
Portfolio highlights
The ISMS beyond the certificate, why most organisations have an ISMS but not a management system, and what changes when compliance is no longer enough.
Core ISMS capabilities framework, a capability model covering governance, risk, controls, operations, and measurement within an ISMS.
System security concepts (7 articles) Practical guidance on implementing systematic security documentation within ISMS frameworks.
- The foundation of security governance, what security concepts are, stakeholder perspectives, and early planning principles
- Core components, how architectural choices transform threats across SaaS, cloud, and on-premise environments
- Control selection and security frameworks, proportionate response using ISO 27001/27002, NIST, IEC 62443, and CIS Controls
Capability sections covering Risk Management, Governance, Policy and Guidelines, Instructions, Communication, Controls, and Assurance are in development.
Research & publications
Technical writing and analysis on security frameworks and risk quantification.
Get in touch
This site is built with Quartz and published under CC BY 4.0.