An Australian cyber security consulting practice, led by an operator.

TrustedZone is an Australian cyber security consulting practice. We deliver IRAP assessments, ISM readiness advisory, Essential Eight uplift, and PROTECTED cloud readiness to Australian government agencies, regulated-industry organisations, and cloud SaaS vendors pursuing Australian government work.

Our principal

An ASD-endorsed IRAP Assessor with capability up to PROTECTED, and a long career in cyber security spanning architecture, assurance, and risk.

Prior senior experience as a regional information security officer for a sovereign-cloud provider, leading PROTECTED-level IRAP assessments, ISM and PSPF reviews, and Essential Eight maturity work for federal and state government customers.

Holds CISSP, SABSA (CSF), and multiple SANS GIAC certifications. The principal is identified to clients under NDA during scoping.

Operating principles

• Independence is load-bearing. We don't assess what we've advised on.
• Findings are evidence-led. Every observation has a primary source.
• Reports are written for the authorising officer, not for us.
• We tell you what we found, what it means, and what we'd do about it — in that order.

Company

An Australian-registered Pty Ltd. Professional indemnity and public liability insurance carried. Independent of cloud vendors, product vendors, and managed service providers. Full corporate details disclosed under NDA during engagement.