by Paul Friend, MBA | ISO Lead Auditor | Sep 16, 2025 | Blog
Executive Summary Audit readiness services have become essential for organisations navigating increasingly complex compliance requirements. Whether the target is ISO 27001, ISO 42001, PCI DSS, IRAP or SOC 2, the value of readiness lies not only in passing an audit but...
by Paul Friend, MBA | ISO Lead Auditor | Sep 8, 2025 | Blog, ISO 42001
ISO 42001 is the international standard for Artificial Intelligence Management Systems. It gives organisations a clear and structured way to govern AI risks, assign responsibility, and manage AI systems across their full lifecycle. As artificial intelligence becomes...
by Paul Friend, MBA | ISO Lead Auditor | Sep 8, 2025 | Blog
Summary Australia’s cybersecurity landscape continues to evolve rapidly. As threat activity increases and regulatory expectations rise, boards also demand clearer accountability. Therefore, cybersecurity risk now sits at the centre of organisational governance....
by Paul Friend, MBA | ISO Lead Auditor | Sep 6, 2025 | Blog, Essential 8
The Essential Eight maturity levels provide a structured progression framework that Australian organisations use to strengthen cyber security incrementally. Developed by the Australian Signals Directorate (ASD), the maturity model defines four levels, from Level 0...
by Paul Friend, MBA | ISO Lead Auditor | Sep 4, 2025 | Blog, Penetration Testing
Penetration testing requirements in Australia continue to increase as organisations move into 2026. Regulators rarely mandate testing outright. However, boards, auditors, and enterprise customers now expect organisations to prove that security controls work under real...
