Strategic Cybersecurity Leadership for Growing Technology Companies

Ascensis builds cybersecurity practices and programs for growing companies. We partner with forward-thinking organizations across all growth phases, delivering enterprise-level security expertise. For implementation needs beyond strategic guidance, I collaborate with trusted security specialists to provide comprehensive solutions. I commit to lasting relationships, working alongside your team from early stages through maturity.

Our typical customers are fast-growing startups and mid-sized companies that need enterprise-grade security but don't have the resources for a full in-house security team. I specialize in organizations developing software products, cloud services, and AI applications. I also work with businesses across various sectors including SaaS, fintech, healthcare, and e-commerce that handle sensitive data and need to meet compliance requirements or prepare for security audits.

I deliver services through a combination of remote and on-site engagements. For most clients, I begin with a comprehensive security assessment to identify gaps and priorities. Based on the findings, I develop a tailored security roadmap and implementation plan. For implementation needs beyond strategic guidance, I collaborate with trusted security specialists to provide comprehensive solutions when necessary. Ascensis adapts to your tools and processes, working where your team works: Slack, Google Docs, Github, Notion, Confluence, Jira, etc.

My approach is pragmatic and business-focused, drawing on my unique 25-year security journey that includes both offensive security experience and building defensive security programs at companies like Microsoft, Skype, Skyscanner, and Miro. This dual perspective allows me to anticipate threats more effectively while designing practical defenses. I understand that security must enable business growth, not hinder it. Ascensis prioritizes controls that provide the highest security ROI and align with your business objectives. Having worked with companies at all stages of growth, I can scale solutions as your needs evolve. I also emphasize knowledge transfer, ensuring your team understands the security measures we implement and the threat landscape they address.

Clients typically see meaningful improvements in their security posture within the first 30-60 days of engagement. Quick wins like implementing basic access controls, security awareness training, and vulnerability management can show immediate value. More complex initiatives like building a comprehensive security program can take 3-6 months. I provide regular progress updates and metrics to track improvements throughout our engagement, ensuring you have visibility into the value Ascensis delivers.

I believe security tools should enable business, not slow it down. My approach combines established security principles with technological innovation in several ways: I develop custom security automation that integrates with your existing workflows, reducing friction while increasing protection. Throughout my career, I've created automation for Information gathering, Penetration testing, Application security testing, vulnerability management and security testing integration into CI/CD pipelines. I've contributed to the security community through developing open source tools that are still actively used today (theHarvester, Wfuzz). When working with clients, I focus on right-sized technological solutions that match their maturity level and growth trajectory. This might mean adapting enterprise security patterns for startups or creating lightweight alternatives to expensive security tools. My background in both offensive and defensive security gives me insight into building practical detection and response capabilities that catch real threats without overwhelming teams with false positives. Now I leverage the power of AI and Agents to enhance my security capabilities.