Koru Security offers fixed-scope security reviews and advisory services for SMEs and technical teams. Get clear findings, practical recommendations, and a realistic path forward across Microsoft 365, architecture, and security planning.
Independent advice from a CISSP-certified security consultant.
Choose a review based on the problem you need solved, not a vague consulting category.
A fast, low-friction review for NZ businesses that want to understand their biggest security gaps and what to do next.
A focused review of identity, email, access, and tenant security for organisations that rely on Microsoft 365 every day.
Independent security input on important cloud, network, SaaS, and platform decisions before risk gets locked into implementation.
A short, structured engagement that turns broad security concerns into a practical, prioritised plan.
Most organisations do not need a vague advisory engagement to make progress. They need a well-scoped review, a clear picture of risk, and practical next steps they can actually execute.
Select a focused service based on your environment, risks, and immediate priorities.
A short discovery call confirms scope, inputs, and the systems or decisions to review.
You receive concise outputs with prioritised recommendations and clear follow-up actions.
My background spans engineering, technical leadership, consulting, architecture, and security strategy. I am CISSP certified, with hands-on experience across infrastructure, cloud, and enterprise security.
If you want clear priorities without a heavyweight engagement, start with a short conversation about the service that fits best.
A practical guide to auditing Microsoft Entra roles and Privileged Identity Management (PIM), with evidence points, risk checks, and remediation priorities.
A step-by-step guide on setting up a dynamic SCCM device collection for Microsoft Defender ATP onboarded or running devices.