Practical, business-focused advisory services helping organisations reduce technology and information security risk — without unnecessary complexity or disruption.
I support small to mid-sized professional organisations that rely heavily on cloud platforms, have limited internal IT capacity, and require practical guidance around technology and information security risk.
I provide advisory services focused on governance, risk reduction, and oversight. This includes environment assessments, prioritised improvement roadmaps, and validation of security and IT controls.
Engagements follow a phased approach: Assess, Stabilise, Harden, and Optimise — aligned to recognised frameworks such as CIS Controls and NIST CSF.
Work is delivered through a lightweight advisory retainer, focused on oversight, validation, and executive support rather than operational outsourcing.
This is not managed IT, a helpdesk, a SOC, or penetration testing. The focus is governance, clarity, and risk reduction.
I have extensive experience supporting enterprise and professional environments through security incidents, cloud modernisation, and governance improvement initiatives.
Email: info@novnet.co.za
Location: South Africa