About

I run 365 Signal — a risk-led Microsoft security and data governance practice. I’ve delivered across regulated enterprises, MSSPs, and complex multi-tenant estates — helping security teams eliminate control drift and convert Microsoft security tooling into defensible assurance.

Focus

Entra ID, Defender XDR, Sentinel, Purview.

What I deliver

Control ownership, drift assurance, evidence packs, operating models.

Why it matters

Controls that hold during incidents, audits, and organisational change.

The real problem isn’t “Microsoft security”

It’s control drift.

Microsoft cloud estates are living systems: roles change, data moves, tenants merge, AI tooling appears, and policies get copied forward without understanding. Controls quietly drift — and the first time anyone discovers it is often during an incident or an audit.

What I do

I design and operate Microsoft security and data governance as a continuous system — identity-first, evidence-driven, and built to survive real organisational change and regulatory pressure.

My focus is deliberately narrow: the small set of controls that materially reduce risk at enterprise scale.

How I work

  • Control validation: continuous checks on what matters — not “more alerts”.

  • Control ownership: clear accountability for identity, endpoint and data protection surfaces.

  • Assurance output: evidence packs and reporting you can defend to auditors and the board.

  • Architecture that holds: built to survive M&A, tool sprawl, and policy entropy.

Typical outputs include: control posture reports, drift registers, architecture decision records, evidence packs, and operating roadmaps.

Who this is for

Good fit

  • Security teams in regulated or high-growth environments
  • Organisations needing control ownership and defensible assurance
  • Teams tired of project churn and policy drift

Not a fit

  • Tooling recommendations with no operational follow-through
  • Maturity scores and cosmetic “assurance theatre”
  • Dashboards that look good but don’t hold under scrutiny

The outcome

Fewer surprises. Decisions you can defend. And a Microsoft security posture that holds together when the environment changes again — because it will.

Book a Risk Review