YOUR CYBER SECURITY CONSULTANT

Ajay Unni is the CEO and founder of StickmanCyber, a specialist information security firm dedicated to helping businesses mitigate their cybersecurity risk through a combination of strategy, governance, prevention, monitoring, detection, and response.

With over 30 years of IT industry experience (15 of those in cybersecurity), Ajay has worked with all levels of management across multiple corporate domains to help businesses build, implement, and drive their cybersecurity strategies and initiatives forward. Ajay’s unique and extremely dynamic approach to business, service and delivery has made him an influential figure in the cybersecurity sphere and along with his vast experience, has afforded him the respect of many highly regarded corporates, both at home and abroad, some of which include:

• SG Fleet Group
• Ausgrid
• Chartered Accountants ANZ
• Australian Financial Crimes Exchange
• National Storage
• 24-7 Health
• Brisbane Airport
• The ICONIC
• Australian Clinical Labs
• Cover-More
• Australian Institute of Business

Ajay's extensive knowledge and expertise has also seen him:

• Selected as a member of the 2020 NSW Government's Cyber Security Task Force (a carefully curated group of experts tasked with accelerating the adoption of industry standards for cybersecurity across Australia) and contributor to the 2021 NSW Government Cybersecurity Strategy.
• Elected as a company director with CREST Australia New Zealand Ltd; a not-for-profit organisation that provides cybersecurity accreditation for companies, individuals and corporate entities and promotes the provision of high-quality, best-practice information security services.
• Driven by strong company values that form the critical pillars of the entire StickmanCyber business respect, integrity, care, passion, and authenticity, in the relentless pursuit of excellence and to the complete satisfaction of StickmanCyber customers 
• Ajay and his growing team of dedicated information security specialists have solidified StickmanCyber's reputation in the industry as a strong and consistent performer and trusted partner.

Qualifications

• Bachelor of Computer Science
• Masters in Information and Communications Technology

Certifications

• Payment Card Industry Qualified Security Assessor - PCI DSS QSA
• Certified Information Systems Auditor (CISA)
• Lead Implementer in Information Security Management Systems, based on ISO/IEC 27001:2013
• Certified Data Privacy Solutions Engineer (CDPSE)

Experience

• 30+ years of IT industry experience
• 15 years in cybersecurity

Projects

• Contributor to the 2021 NSW Government
• Cybersecurity Strategy
• Member of the 2020 NSW Government
• Cybersecurity Task Force
• Program Management
• Major Bid Management
• Technology Leadership
• Building Alliances
• Secure Innovation
• Executive Advisory
• Crisis Management
• Cyber Solution Architecture
• Enterprise Architecture

Paul dos Santos is a senior IT security professional who began his career in IT infrastructure operations, before moving into managed services, where he developed his skills in network and security architecture. Paul’s focus over the last 15 years has centred around cybersecurity risk and gap assessments, security architecture, operations, and cybersecurity strategy initiatives.

Paul has worked closely with publicly listed organisations, government agencies, councils, large multinationals and SMBs, helping them develop and mature their business and information security controls, processes and strategies. Paul has gone on to represent such clients as their cybersecurity SME or CISO. Paul has also been involved in 'blue teams', is an experienced security incident responder and threat hunter, and has managed security operation centres.

Over his career, Paul’s experience has given him an in-depth knowledge of IT architecture end-to-end, blended with security incident response and cybersecurity assessment experience, enabling him to have a deep understanding of customer environments. He also brings considerable expertise in ISO 27001, NIST and COBIT frameworks to the StickmanCyber team. Paul is meticulous in his approach, driven by customer service and is an empowering mentor to junior team members.

Qualifications

Associate - Chartered Governance Institute of Southern Africa

Certifications

• Certified Information Systems Auditor (CISA)
• Certified Data Privacy Solutions Engineer (CDPSE)
• AGIA – Associate - Governance Institute of Australia
• Comptia Security+
• Information Technology Infrastructure Library (ITIL) Framework
• Microsoft Certified Professional (MCP)
• Security Vendor Accreditations (multiple)

Experience

• 25+ years of IT industry experience
• 15 years in cybersecurity

Projects Worked/Specialities

• IT Network and Security Architecture
• Security Risk Assessments and Audits – ISO 27001, NIST, COBIT
• Security Operations Management
• Incident Response
• Threat Hunting
• Cybersecurity Strategies
• CISO as a Service

Over the last 7 years, Priyanka Raghavendra has managed numerous information security projects for StickmanCyber clients, as well as defining project management processes and best practices for internal security teams. Priyanka's move into an operations management role was based on her success managing multiple high-profile projects and various operational activities for the business.

Priyanka has shown considerable expertise in vendor management and recruitment, and can effectively manage both project and business budgets. She is a responsible team leader who provides guidance and encouragement, to ensure staff achieve optimal results when meeting project goals. Priyanka's ability to excel in a cross-functional management role makes her a key member of the StickmanCyber team.

Qualifications

Master in Business Administration

Certifications

Prince2 Foundation and Practitioner

Experience

7 years experience in project management

Projects

• Project Management
• Business Operations

Maria Hadi is a skilled information security consultant with 9 years' experience in cybersecurity. Maria specialises in information technology, privacy, project management and compliance and has built her expertise working on challenging projects that require a unique and considered approach.

She is adept at planning and has a proficiency for security audits (application and firewall), assessments (network security, vulnerability, APRA and IRAP) and working with key clients to achieve compliance to internationally recognised standards and frameworks (PCI DSS and ISO 27001). Maria's technical expertise allows her to positively engage with stakeholders at all levels and effectively manage a variety of security projects.

Qualifications

Masters in Information Technology – Information Security

Bachelor of Computer Software Engineering

Certifications

• PCI DSS V3 Foundation
• Auditor/Lead Auditor – ISMS, ISO/IEC 27001:2005
• Certified Information System Auditor (CISA)
• Qualified Security Assessor (QSA)
• Certified Information Security Manager (CISM)
• Certified Data Privacy Solutions Engineer (CDPSE)

Experience

9 years of information security experience

Projects

• Cybersecurity Assessment and Implementation
• PCI DSS Compliance and Assessment
• Security Risk Assessments and Audits – ISO 27001, NIST
• ISMS Implementation (ISO 27001)

Before joining StickmanCyber in 2018, Peta spent 15 years in the banking and finance sector. Her career began on the IT Helpdesk, before moving into a joint procurement and telecommunications role within the IT Finance Department where she managed a country-wide corporate mobile plan and assisted in the rollout and training of a global procurement system. From there, Peta took a project leadership role working on annual reports and other compliance documents for another large financial institution, where she stayed for the next 6 years. Since joining StickmanCyber in 2018, Peta has been involved in a number of major projects, including the implementation of an ISMS (ISO 27001) and Cybersecurity Strategy, and Assessment against the NIST Cybersecurity Framework as well as providing InfoSec Office consultancy services and Customer Relationship Management for StickmanCyber's Managed Services clients. Peta is incredibly client-focused and prides herself on delivering to an exceptionally high standard, as is evidenced in the attention to detail she applies to her work.

Qualifications

Proofreading and Editing – CCE, University of Sydney The 7 Habits of Highly Effective People (FranklinCovey) Introduction to Project Management.

Experience

6 years' experience working on financial services projects, writing, editing, and proofreading business and compliance documents.

3 years' experience on information security projects - ISO 27001, NIST, ISMS and strategy implementation, mandated and organisational document development, InfoSec Office admin activities and Customer Relationship Management.

Projects

• ISMS Implementation (ISO 27001 Certification) Project
• ISO-Mandated Document Development
• Organisational Policy and Procedure Development
• Cybersecurity Uplift Project – NIST Cybersecurity Framework
• Cybersecurity Strategy Implementation Project
• Customer Relationship Management

Nell is a skilled consultant with 2 years of experience and expertise in information security, customer service and project implementation. She has an extensive background working in large organisations, such as RMIT University, Victorian Tertiary Admissions Centre (VTAC) and Deloitte where she has gained expertise in connecting with senior stakeholders, problem-solving and providing project implementation support. 

Nell's main area of expertise is ISO27001 project implementation, PCI DSS compliance, NIST framework and post/pre-sales project delivery. Moreover, she has extensive knowledge of vendor risk management.

Nell's strong communication skills, combined with her technical expertise have made her a seasoned cybersecurity consultant, allowing her to build connections with clients, understand their needs, and business processes and implement effective solutions.

Qualification

Bachelor of Information Technology

Experience

2 years of experience in cybersecurity

Projects Worked/Specialities

• Cybersecurity Assessment and Implementation
• Vendor Risk Management
• PCI DSS Compliance and Assessment
• Security Risk Assessments and Audits – ISO 27001, NIST
• ISMS Implementation (ISO 27001)

Abartan Dhakal is a highly talented penetration tester, who has established himself in the industry as a top tier pen tester. He is adept at both vulnerability assessments and penetration testing (VAPT). Abartan is currently listed on over 40 ‘Hall of Fames’, some of the most notable being Google, Intel, Twitter and the US Department of Defence. More recently, he was honoured as one of only two ambassadors in the AU region (one of 19 ambassadors worldwide) for Bugcrowd – one of the top bugbounty platforms linking ethical hackers and businesses. Abartan is a consistently strong performer and 'outside the box' thinker who sets the bar high to not only challenge himself but to deliver beyond client expectations.

Qualifications

Bachelor of Information Technology

Certifications

Certified Ethical Hacker (CEH) Practical

Experience

4 years' experience in offensive security

Projects Worked/Specialities

• Vulnerability Assessment and Penetration Testing (VAPT): 
  • - Web Application 
  • - Mobile Application 
  • - API 
  • - Red Teaming and Social       Engineering
  • - Network
• Burp Suite Mastery
• WordPress
• Agile Development and SCRUM
• HTML and CSS
• Bash and Python

Madhan Kumar is a Level 2 Security Analyst in StickmanCyber's Security Operations Centre (SOC) who for the past three years, has been honing his skills in Security Operations Management, Threat Hunting, Vulnerability Assessment and Security Incident Management. As a Level 2 Analyst, Madhan works across multiple customer environments monitoring log ingestion, security events, and analysing and reporting on threats and vulnerabilities. He has expertise in multiple SIEM tools, endpoint security, Windows and network administration and is always working to expand his technical knowledge.

Qualifications

Electronics and Communications Engineering

Security Information and Event Management

Certifications

• Qualys Certified Specialist
• Network+

Experience

4 years of IT industry experience

Projects Worked/Specialities

• Security Operations
• Security Incident Management
• Threat Hunting
• Information Security
• Awareness
• IT/Network Administration
• Log Ingestion
• Vulnerability Assessments

Sam Newton is a senior IT security professional.

He began his career in mechanical engineering building prototype machines for the mining industry in South Africa. His IT career began in board-level hardware repair and progressed into network and security infrastructure and operations wherein he now specialises.

Sam had his own business for over 20 years, managing the security and infrastructure environments of several small and medium enterprises. He also designed and built the infrastructure for a cloud-hosted email and website service provider.

Sam managed the South African arm of a 24/7 Australian Security Operations Center, providing security monitoring services to corporate companies and government organisations.

Sam's experience during his career has enhanced his eye for detail and critical thinking abilities. It has enabled him to approach issues from different perspectives which means that he often solves complex problems by implementing effective and unique solutions. Sam is driven to provide all his clients with the best possible service and solutions.

Certifications

• Cisco CCNP Routing 
• Cisco CCNA Routing and Switching 
• Cisco CCNA Security 
• ITIL Foundation 
• Comptia Security + 
• Microsoft MCSE

Experience

• 25+ years of IT industry experience
• 15 years in cybersecurity

Projects Worked/Specialities

• IT Network and Security Architecture 
• Security Operations Management 
• Cybersecurity Health Assessment 
• Incident Response 
• Threat Hunting 
• Cybersecurity Strategies

Yash is a skilled Information Security Consultant with over 6 years of experience in the security domain. He is proficient in the ISO 27001 & 27002 Framework, NIST Cybersecurity Framework and the Payment

Card Industry Data Security Standard (PCI DSS). He has also conducted numerous Cybersecurity Maturity and Vulnerability Assessments and brings with him a knowledge of GDPR.

Yash has built his experience through various roles, including Lead Auditor, ISO Implementation Advisor and Cybersecurity Consultant, and has worked closely with clients to deliver a single point of contact and ISO OnDemand services.

During his career, Yash has successfully conducted 20 internal audits and played a valuable role in several external audits. Yash consistently demonstrates his practical knowledge and in-depth understanding of risk management providing valuable insight to clients; both those with an in-house risk program and those without.

Qualification

B.E. in Electronics and Communications Engineering

Certifications

• CISA - Certified Information Systems Auditor (Training) 
• ITIL4 Foundation Certificate in IT Service Management GR671188330YS 
• Qualys Certified Specialist 
• BSI ISO 27001:2013 Certified Lead Auditor ENR-00620049

Experience

6+ years of experience in Information Security

Projects Worked/Specialities

• NIST Cybersecurity Framework
• Payment Card Industry Data Security Standard (PCI DSS)
• Vulnerability Management
• ISO 27001, 27005 and 31000 
• GDPR
• Knowledge on tools like Nessus, Qualys Guard, Acunetix, Burp
• suite and Nmap

Harish specialises in Governance, risk and compliance (GRC) initiatives.

He has built his expertise working with customers across the globe and led engagements for IT security risk assessment, and process implementations and helped customers achieve compliance for frameworks such as ISO27001, NIST and JSOX.

He also brings in excellent project management skills, has an eye for details and is adept at communicating with stakeholders across the board, He can easily identify customer challenges and present a solution which has helped in delivering complex projects smoothly

Qualification

• Bachelors in commerce 
• Masters In Computer Software Applications 
• Post Graduate Diploma in Business Administration 

Certifications

• Certified Information Security Manager 
• Lead auditor For ISO27001 
• ITILV3 Foundation 
• COBIT 5.0 Foundation 

Experience

14+ years in Information Security, Risk Management and Governance

Projects Worked/Specialities

• ISMS Implementation (ISO 27001) 
• Security Risk Assessments and Audits – ISO 27001, NIST 
• IT process frameworks and implementation 
• PCI DSS Compliance and Assessment

Raghavendra is a highly skilled Information Security Consultant with 13 years of industry experience. He specializes in risk assessments, compliance evaluation and remediation, ISMS implementation and internal IT audits.

Raghavendra is a well-respected team member whose expertise allows him to apply a flexible, yet measured approach to meet individual client requirements, regardless of the project size or nature.

Qualification

MBA - IT

Certifications

ISO 27001 LA, CCSK

Experience

13+ years in Information Security, Risk Management, and Governance

Projects Worked/Specialities

• ISMS Implementation (ISO 27001) 
• Security Risk Assessments and Audits – ISO 27001, NIST 
• PCI DSS Compliance and Assessment