Pragmatic Information Security and Privacy Services

Improve visibilityReduce riskPriorise adequatly
Olivier Reuland

I have been giving independent and actionable advice to countless clients over two decades across four continents and many industries.

Olivier very quickly became an invaluable member of our team.

Clients
Boards, Companies, Startups, Not-for-Profit
Domains
GRC, Privacy, Information Security, Cyber Security
Services
Factional CISO, vCISO, Retainer, Project-based, Pro bono

What do people say?

👨🏻‍💻 Owen Evans
👨🏻‍💻 Owen Evans
Growing technical leadership skills and teams. Coach, mentor and software leader. Helping technical people become leaders.
"Olivier brings to his work a level of understanding, pragmatism and general joy that is infectious to others, he makes caring about security a pleasure rather than a chore and is focused on outcomes not compliance for compliance sake. He's able to work with small nimble teams and has a level of understanding of business constraints that make him a strong asset to any organisation. I've loved working with Olivier and would recommend his work wholeheartedly.

Read more testimonials

Picture of the author outdoors

Want to know more?

Domains

Governance, Risk and Compliance (GRC)

Help improve your GRC goals.

Do you have a solid framework for setting security policies, objectives, and processes? Security governance should be aligned with the overall business strategy and risk appetite. Good risk practices will help ensure the business assigns resources to the right problems. Finally, a good right-sized compliance framework should also be in place, ensuring that your organisation complies with applicable laws, regulations, and industry standards.

Privacy

Ensure you understand your privacy risks and responsibilities.

Customers are increasingly concerned about their privacy. Companies that collect and use personal data responsibly can build customer trust and loyalty. Are you making the best of these opportunities? A data breach or other privacy incident can also damage a company's reputation. Companies that take steps to protect customer privacy can reduce the risk of these incidents.

Information Security

Improve your information security posture.

Do you have a good understanding of your information assets? Where are they located, what are they used for, and by whom? A good maturity helps protect your IP and your staff and customers' data.

Cyber Security

Keep your cybersecurity practices under control.

Phishing attacks, ransomware, credential stuffing, constant patching, and so much more. Not enough time and resources? And so much to do. Do you need help navigating through all of this?

Clients

Boards

What questions should you ask your leadership team?

Do you clearly understand your obligations and exposure? Are you confident you have been given the correct information? I help my clients with independent advice, ensuring they know they are asking the right questions and that the answers are relevant and accurate.

Companies

Need help with protecting your company's information?

Strategy, governance, risk and compliance (GRC), business continuity, privacy, architecture, cyber security, solution design, cloud, on-prem... I help my client make sense of all these moving parts, identify the real priorities, and solve problems without creating more.

Startups

Want pragmatic advice to start on the right foot?

The best moment to start your security and privacy maturity is on day 1. I help my clients improve their security and privacy as they mature their startups so that they can be ready for the inevitable questions from their clients and investors. I know cash flow is key for startups, so I also offer flexible models tailored to this.

Not-for-Profit

Can I help with something?

I offer pro-bono work for not-for-profits and charities, typically advising or assisting the board with their responsibilities. Don't hesitate to reach out to discuss!

Picture of the author outdoors

Who is Olivier?

I am an enthusiastic and self-motivated CISO, senior information security and privacy expert, architect and team leader. I am mostly active in Wellington, New Zealand and Melbourne, Australia. My expertise comes from working with clients across four continents and many industries for over two decades. I have a proven track record and energy to deliver results.

Contact me

Top human skills

Leadership
Leading by example, excellent team player, good listener, open-minded, pragmatic, SAFe/Agile practitioner, mentor, trainer, resource and conflict management;
Business
Stakeholder management, training and awareness, negotiation, business analysis, planning and delivery, SLA/OLA, KPI, suppliers/providers management;
Collaboration
Engagement with senior stakeholders (C-level), presentations (various levels, >100 attendees), meeting chair, tech lead, documentation (technical/end users).

Top hard skills

Governance, Risk and Compliance (GRC)
Information security governance, risk management, business continuity planning, compliance/regulatory frameworks (NZ Privacy Act, PSR-NZISM/New Zealand, PSPF/Australia, GDPR/EU, MAS/Singapore, HKMA/Hong Kong, ISO27k, PCI-DSS, NIST, OWASP...)
Security and Privacy
Security solution design, security/privacy reviews, platform/application hardening, application development security, network and cloud security, Identify and Access Management (IAM), DLP, cryptography, incident response
And more...
Enterprise / Solution / Infrastructure / Security architecture, cloud integration, solution design, scripting and coding, machine learning, storage platforms, HA and redundancy, networks, large multi-site environments, virtualisation...

Certifications

Among others
  • CISSP - (ISC)2 Certified Information Systems Security Professional
  • CISM - ISACA Certified Information Security Manager (highest score in Oceania)
  • CRISC - ISACA Certified Risk and Information Systems Control (scored in top 5%)
  • PCIP - PCI Security Standards Council - PCI Professional
  • AWS Certified Solutions Architect - Associate
  • Certified Scaled Agile Framework (SAFe) 5 Practitioner
  • Machine Learning at Stanford University (online)
  • ITIL, Microsoft, Cisco, VMWare, Compellent, Novell...