by Dinesh Aggarwal, CISO and Founder | Dec 2, 2025 | Blog, SOC 2
The SOC 2 trust services criteria are the foundation of every SOC 2 engagement. They define what auditors assess, which controls are in scope, and what evidence organisations must produce. Understanding how the trust services criteria work is therefore essential...
by Dinesh Aggarwal, CISO and Founder | Nov 23, 2025 | Blog, SOC 2
This article explains SOC 2 Audit cost components, the difference between Type 1 and Type 2, and how to create a budget that your board and sales teams can trust. Australian organisations are increasingly expected to demonstrate strong security governance,...
by Dinesh Aggarwal, CISO and Founder | Nov 22, 2025 | Blog
Summary Credentials – the combination of usernames and passwords – remain among the simplest yet most exploited attack vectors in Australian organisations. According to the Office of the Australian Information Commissioner (OAIC) the majority of reported cyber...
by Dinesh Aggarwal, CISO and Founder | Nov 10, 2025 | Blog
The release of MITRE ATT&CK v18 represents one of the most significant changes in the framework’s history. It places a stronger focus on practical detection engineering and cross-platform visibility. For Australian organisations, this update is a chance to align...
by Dinesh Aggarwal, CISO and Founder | Nov 6, 2025 | Blog, ISO 27001
Your first ISO 27001 audit is a major step in your organisation’s information security journey. It is the point where your Information Security Management System (ISMS) is formally assessed by an external auditor to determine whether it meets the requirements of the...
