ISO 27001 Lead Auditor. IT practitioner for 26 years. Founder of Any IT. Based in Brisbane — working across Australia.
I was always that kid with a Commodore 64 — playing with technology from an early age, and the one relatives called on to program the VCR. After school in the mid-90s, and for the next 26 years, I worked across the full stack of what makes organisations function: server infrastructure, networking, cloud platforms, Microsoft 365, security architecture, and technology strategy.
Ten years ago I founded Any IT, a technology consulting practice working with Australian businesses on infrastructure, cloud migration, and security. It gave me a deep appreciation for how organisations actually operate — and the gap between what compliance frameworks ask for and what's realistic for a business to implement.
Recently I completed my Exemplar Global certified ISO 27001 Lead Auditor qualification, followed by ISO 42001 and ISO 27701 specialist certifications. It wasn't a career change — it was a natural extension of what I'd been doing: helping organisations build technology that works, properly and securely.
Now I bring both sides together. Whether I'm consulting on your ISMS implementation or conducting your Lead Audit, you get someone who's spent 26 years in the engine room — not just reading the manual.
A good security framework supports your operations — it doesn't become a burden that people route around. Controls need to be practical, proportionate, and actually used.
An auditor who can't distinguish a genuinely effective control from a well-documented ineffective one is a risk to the organisations they certify. Technical depth matters.
You'll always know exactly where you stand. Whether it's a gap assessment finding or an audit nonconformity — plain language, no jargon, no surprises.
Exemplar Global certified. Auditing conducted to ISO 19011:2018 guidelines. Information security management system audits.
Specialist certification in AI governance, responsible AI development, and AI management system implementation and auditing.
Privacy Information Management Systems specialist. The privacy extension to ISO 27001, covering GDPR and Australian Privacy Act alignment.
TAFEcyber certified Essential Eight assessor. ASD's Essential Eight Maturity Model assessments for government and enterprise organisations.
Structured project management methodology. Foundation for managing technology and compliance implementation projects effectively.
IT service management best practice framework. Understanding of IT service lifecycle and service management processes.
Whether you need pre-audit consulting to get certification-ready, or a technically credible Lead Auditor — let's start with a conversation.