Services

What I can do for you

End-to-end technical delivery across software development, cloud, low-code, and security compliance. Every engagement is handled personally — from brief to production.

01

Web Applications

Fast, accessible, SEO-friendly web applications that serve real users — from marketing sites to complex internal tools.

Blazor Web Apps

Server-side rendering for SEO-critical pages, Interactive Server for rich UI — all in one .NET codebase without JavaScript complexity.

Accessibility First

WCAG 2.1 AA compliance, semantic HTML, keyboard navigation, screen reader support — included by default, not as an afterthought.

Performance Optimisation

Core Web Vitals, lazy loading, image optimisation, CDN configuration, and bundle analysis — real-world performance for real users.

Blazor SSR WCAG 2.1 PWA Core Web Vitals
02

Mobile Applications

.NET MAUI cross-platform apps for iOS and Android — native performance with a shared codebase.

.NET MAUI

Single C# codebase targeting iOS, Android, Windows, and macOS. Native UI controls, platform-specific optimisations, and full .NET ecosystem access.

Backend Integration

Seamless integration with .NET APIs, Azure B2C authentication, push notifications, and offline sync using SQLite.

App Store Deployment

Guidance through App Store and Play Store submission, including signing, provisioning profiles, and review optimisation.

.NET MAUI iOS Android SQLite Azure B2C
03

Power Platform

Low-code solutions that deliver real business value — not just demos that collapse in production.

Power Apps

Canvas and model-driven apps that your teams will actually use. Proper UX, Dataverse architecture, and security roles configured correctly.

Power Automate

Cloud flows, desktop flows (RPA), and scheduled automations that replace manual processes and integrate with your existing systems.

Power BI

Semantic models, dataflows, DirectQuery, and DAX measures. Reports and dashboards that tell a clear story from complex data.

Custom Connectors & PCF

Bridge the gap between Power Platform and your internal APIs. Custom connectors, Power Apps Component Framework controls, and Dataverse plugins.

Power Apps Power Automate Power BI Dataverse SharePoint PCF
04

.NET Development

Production-ready backends, APIs, and enterprise systems built on the latest .NET stack — clean, testable, and built to last.

RESTful & Minimal APIs

Typed responses, FluentValidation, Swagger documentation, JWT authentication, and versioning.

Clean Architecture

Domain, Application, Infrastructure separation. Repository pattern, CQRS, Result objects — no leaky abstractions.

Database Design & EF Core

SQL Server or PostgreSQL with EF Core migrations, optimised queries, and performance profiling.

Azure Integration

Azure Functions, Service Bus, Blob Storage, Key Vault, and App Services — fully managed, scalable infrastructure.

CI/CD Pipelines

GitHub Actions or Azure DevOps pipelines with automated testing, code quality gates, and zero-downtime deployments.

Legacy Modernisation

Incrementally migrate .NET Framework or .NET Core 3.x applications to modern .NET without rewriting everything at once.

.NET 8 / 10 C# 12+ EF Core Azure SQL Server PostgreSQL xUnit GitHub Actions
ISO 27001
05

ISO 27001 Consultancy

End-to-end support for ISO 27001 — from your first gap analysis through to certification and beyond. Practical, founder-led, and free of consultant jargon.

Gap Analysis

Assess your current information security posture against ISO 27001:2022 Annex A controls. You get a clear, prioritised report of what needs to change and why — with no waffle and no unnecessary alarm.

ISMS Design & Implementation Support

Design and implement an Information Security Management System that fits your organisation — not a generic template bolted onto your processes. I work alongside your team to build something that actually gets used.

Policy & Documentation Creation

Plain-English policies, procedures, and records that staff will read and follow — and that satisfy certification body requirements. No copy-paste policy packs; everything is written for your context.

Risk Assessment & Treatment

Structured information security risk assessment using ISO 27005 methodology. Risk register, treatment plan, and Statement of Applicability — produced collaboratively so your team understands and owns the results.

Internal Audit Preparation

Design and run your internal audit programme. I train your team, conduct audits, report findings clearly, and help you track corrective actions through to closure before your certification audit.

Certification Audit Support

Prepare your team for Stage 1 and Stage 2 certification audits. Pre-audit readiness assessment, evidence pack review, and post-audit corrective action support to close out any nonconformities.

Ongoing Compliance Support

Certification is the start, not the finish. I offer retained support to keep your ISMS current — annual surveillance audit preparation, control reviews, management review facilitation, and advice as your organisation changes.

ISO 27001:2022 ISO 27005 ISMS Risk Assessment Annex A SoA Lead Auditor
06

ISO 27001 Auditing

Independent, qualified auditing services — whether you need an internal audit conducted by an experienced Lead Auditor, supplier assessments, or pre-certification readiness checks.

Internal Audits

I conduct your internal audits as an independent Lead Auditor, giving your organisation genuine assurance rather than a tick-box exercise. Full audit plan, evidence review, findings report, and corrective action tracking.

Pre-Certification Readiness Assessment

A structured mock audit against ISO 27001:2022 before your Stage 1 or Stage 2 certification audit. Identifies gaps and nonconformities early so they can be resolved before the official assessment.

Surveillance & Recertification Audit Support

Annual surveillance audits and three-year recertification assessments can catch organisations off guard. I help you prepare evidence packs, review control effectiveness, and close out any open nonconformities in advance.

Supplier & Second-Party Audits

Assess the information security posture of your suppliers and third parties against ISO 27001 controls or your own requirements. Clear findings reports and practical recommendations for managing supply chain risk.

Findings Review & Corrective Actions

Received a nonconformity from your certification body? I review the finding, help you identify the root cause, and define a corrective action plan that satisfies the auditor without over-engineering the solution.

Audit Programme Management

Design and manage your multi-year internal audit programme — scope planning, scheduling, resource allocation, and reporting to management — so audit fatigue never becomes a compliance risk.

ISO 27001:2022 Lead Auditor Internal Audit Second-Party Audit Nonconformity Corrective Action

Ready to get started?

Tell me about your project and I'll come back to you within one business day.

Get in Touch