What we actually do. Every line below is backed by real engagements — security leadership, regulated environments, and live incidents handled under pressure.
Tailored — every service measured to your actual risk, never a template.
SEC · 01Security Leadership
CISO-as-a-Service: security programs, policies and annual plans built around your real risk profile, with senior ownership rather than a checklist.
CISOstrategygovernance
GRC · 02GRC & Compliance
Risk management, business impact analysis and regulatory alignment. ISO 27001 / 27035 / 22301 — taken all the way to certification.
ISO 27001riskaudit
IR · 03Incident Response
Real-time handling of cyber incidents and crises: investigation, forensics, coordination and remediation — led personally, not delegated.
forensicscrisisresponse
DPO · 04Privacy & DPO
Data protection governance and DPO services under both Israeli privacy law and the GDPR, with direct experience working alongside national privacy authorities.
DPOGDPRprivacy
ARC · 05Secure Architecture
Security-by-design across servers, networks and applications — bridging R&D, DevOps and operations instead of bolting security on at the end.
designdevsecopsreview
OT · 06IoT / OT / Embedded
Security for connected devices, control systems and embedded platforms — from the perspective of someone who has built them, not just audited them.
IoTOTembedded
ADV · 07Tech & Digital Transformation
Technology advisory grounded in a CTO background — architecture, modernization and digital transformation guided by security from day one.
advisorytransformationcto
AI · 08AI, Securely
Bringing AI into the organization without opening new attack surface — applied use, governance and the risks most teams discover too late.
aigovernancerisk
TLK · 09Talks & Lectures
Speaking on cybersecurity, risk and the reality of the CISO seat — for teams, leadership and professional audiences. Technical when it needs to be.
speakingtrainingworkshops
