Dan Frayn

Director (Governance, Risk & Compliance)
Dan spent 12 years in the London information security scene before moving to New Zealand to focus on Governance, Risk and Compliance.
Talk to an expert
Highlights

Career highlights

Proven security allrounder with detailed technical knowledge from on premises networks to cloud and everything in between, capable of distilling complex security issues down to real world impacts for business stakeholders. His previous roles cover a wide variety of disciplines including Security Operations, Solution Architecture, IT Security Management, IT Programme Management, Security Strategy and Compliance. He has spent the last 5 years at Bastion primarily helping government agencies streamline their assurance processes to deliver a greater efficiency while simultaneously improving assurance practices and risk management. Outside of work, you are most likely to find him out on a hiking trail, up a mountain or running along the Wellington waterfront in the morning.

Cyber security news

Latest advisories

Stay ahead of emerging threats with our expert blog posts, research, and industry updates.
Silverstripe - Cross-Site Scripting (XSS) Vulnerability
A Cross-Site Scripting (XSS) vulnerability has been identified in the administrator panel of Silverstripe CMS, specifically in the handling of the user input within the form messages module.
Silverstripe - Host Header Injection
A Host header injection vulnerability in Silverstripe has been identified that allows an attacker to poison the password rese
Statamic CMS
Sam Schroder found a local file inclusion (write only) vulnerability inside of the upload functionality of Statamic CMS. This affects front end components like forms with `assets` fields.
Discover our services

We have the tools to pinpoint risks

Whether it’s hidden vulnerabilities or patterns you might miss, we help you stay one step ahead and make confident, informed decisions. Understand how our services can help your business uncover critical risks

Talk to an expert
Employee Cyber Training & Awareness
Your people are your first line of defence. Our cyber training builds awareness and sharpens their instincts.
Advisory
When clarity is critical and stakes are high, our advisory services deliver strategic, executive-level security expertise that empowers decision-making.