cyber@seiller:~# available for engagements

Expert Cybersecurity
for Business

Writing and thinking about information security. Helping organizations build resilient security postures through assessment, architecture, and compliance.

View Services → Read the Blog →
500+ Vulnerabilities Found
50+ Clients Protected
12 Frameworks Covered
15+ Years Experience
scroll
<services/>

What I Do

Comprehensive security solutions tailored to your organization.

🔒

Security Assessments & Audits

Know where you stand before an attacker shows you. Our assessments go beyond automated scans to uncover real risks in your environment.

  • Vulnerability assessments & pen testing
  • Risk analysis and prioritization
  • Security architecture review
  • Executive-ready reporting
🌐

Network Security Architecture

Build security into your infrastructure from the ground up. We design network architectures that are secure by default and resilient by design.

  • Zero trust architecture
  • Firewall and segmentation
  • VPN and remote access
  • Cloud security (AWS, Azure, GCP)
📋

Compliance & GRC

Compliance does not have to be painful. We help you meet regulatory requirements efficiently while building a governance program that adds real value.

  • HIPAA, PCI-DSS, SOC 2, NIST CSF
  • Gap analysis and remediation
  • Policy development
  • Audit preparation
👤

Identity & Access Management

Control who has access to what and when. We help you implement IAM frameworks that balance security with usability.

  • Identity provider setup (Okta, Azure AD)
  • Zero trust MFA implementation
  • Access control audits
  • Privileged access management
~/blog/posts

Latest from the Blog

Thinking out loud about security, risk, and what it means to protect systems.

Apr 20, 2026 Identity Access

Why Small Businesses Don’t Need to Outrun the Bear

The good news: small practices don’t need to outrun the bear. They just need to be harder to penetrate than the practice down the street. Attackers are opportunistic. Most ransomware groups run automated scanning that flags easy targets — unpatched VPNs, legacy protocols left exposed, admin accounts without MFA. Solid MFA, current patches, and offline […]
Apr 20, 2026 Identity Access

AI Security Governance: Building a Framework Before You Need One

Most organizations are deploying AI faster than they’re building security controls for it. The result is a growing gap between what AI can do in your environment and what your security team can actually see or defend. AI security governance is about closing that gap — establishing a structured set of policies, controls, and oversight […]
Apr 20, 2026 Identity Access

What is MITRE ATLAS and Why Your Security Team Should Care

If you’ve heard of MITRE ATT&CK, you already know the basic idea: a curated knowledge base of adversary tactics and techniques, built from real-world observations. ATLAS is the same concept, purpose-built for AI systems. ATLAS stands for Adversarial Threat Landscape for Artificial-Intelligence Systems. It documents the techniques threat actors use to attack AI models, exploit […]
View All Posts →
#contact

Start a Conversation

Ready to get serious about security? Tell me about your situation.