Steve Crutchley

Steve is a recognized leader and foremost authority in the GRC arena. With more than 25 years of experience in Business Protection, combined with an extensive knowledge of the industrial, commercial, government and financial areas, Steve has dedicated his career to maintaining a highly focused emphasis on risk, governance, compliance, information security and information assurance.

A serial entrepreneur, Steve’s string of successes include the sale of his previous venture, 4FrontSecurity, to Symantec. He also sold Systems Solution to AST in South Africa which culminated in the listing of the respective company and the subsequent acquisition of a number of local and international businesses.

Steve has held senior positions in government as well as corporate and private businesses for many years and has a solid track record of prior achievements. In a sector where the noise is mixed and confusing, Steve is able to help organizations navigate through the business protection (security) and compliance maze and assist them in selecting and delivering the processes and solutions that will mitigate risk and support corporate governance. Steve has extensive experience, knowledge and a deep understanding of various standards and control structures such as ISO/IEC 20000, ISO/IEC 27001, ISO 22301, COBIT, ISF, COSO, GLBA, HIPAA, NERC, PCI to mention just a few. Steve is an accredited PECB Trainer for ISO/IEC 27001, ISO 20000 and ISO 22301, in addition, Steve is an accredited registration auditor for ISO 27001, ISO 20000 and ISO 22301 and a renowned Lead Auditor and implementer for ISO 27001, ISO/IEC 20000 and ISO 22301. Steve is also CISM and CGEIT and has a Bachelor of Science in Management Information Systems (B.Sc. Management Information Systems) degree with concentration on Information Security.