data:image/gif;base64,R0lGODlhAQABAAD/ACwAAAAAAQABAAACADs=

About InfoSec Consulting Ltd.

Our Mission

At Sandy Fadale InfoSec Consulting Ltd., our mission is to provide top-notch computer security solutions tailored to meet your specific needs. We strive to protect your digital assets and  confirm your peace of mind in an increasingly complex Information Security landscape.

Why Did I Start This Company?

Passion for Protecting Data

Filling a Critical Market Need

Filling a Critical Market Need

I care deeply about keeping sensitive information safe from cyber threats, breaches, and misuse, and helping organizations maintain their trust and security.

Filling a Critical Market Need

Filling a Critical Market Need

Filling a Critical Market Need

I noticed that many organizations focus primarily on cybersecurity but still struggle with broader information security challenges such as governance, risk, and compliance. I also observed a lack of access to tailored, expert guidance—so I stepped in to bridge that gap.

Expertise and Experience

Filling a Critical Market Need

Expertise and Experience

My extensive background in InfoSec provides me with unique skills and insights, and founding my own company allows me to apply that knowledge with greater flexibility, creativity, and impact.

Key Services

Information Security Management System (ISMS)

What is an ISMS? A core set of processes, policies, and controls that establish and maintain an organization’s information security framework. It provides a structured approach to managing sensitive company information so that it remains secure.

Information Security Strategy

  • High-level statement of management’s commitment to security
  • Defines scope, objectives, and principles of the ISMS
  • Communicated across the organization

Information Security Umbrella Policy

  • High-level management intent statements
  • Sets the foundation for an organization’s entire information security program
  • Acts as the “umbrella” under which all specific security policies, procedures, standards, and guidelines reside

Risk Assessment and Treatment

  • Identifying information security risks across assets, people, processes, and technology
  • Evaluating risk levels based on likelihood and impact
  • Selecting and implementing appropriate risk treatment controls

Asset Management

  • Identifying and classifying information assets
  • Defining ownership and acceptable use
  • Maintaining asset inventory

Access Control

  • Defining access rights based on roles and responsibilities
  • Implementing least privilege principles
  • Managing user authentication and authorization

Incident Management

  • Establishing processes for detecting, reporting, and responding to security incidents
  • Defining roles and responsibilities for incident handling
  • Learning from incidents through post-incident reviews

Training & Awareness

  • Providing ongoing security awareness education for all employees
  • Specialized training for roles with specific security responsibilities

Physical and Environmental Security

  • Protecting physical access to facilities and sensitive equipment
  • Environmental controls to prevent damage (fire, flood, etc.)

Supplier and Third-Party Management

  • Evaluating and managing risks related to suppliers and partners
  • Security requirements in contracts and service agreements

Monitoring and Measurement

  • Regularly monitoring security controls and performance
  • Conducting internal audits and management reviews

Continuous Improvement

  • Applying corrective and preventive actions based on audits, incidents, and performance data
  • Updating policies and controls as the threat landscape evolves

How can we help?

Reviews

Social

Contact Us

Get in Touch

Attach Files
Attachments (0)

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Questions or Comments?

We know that our clients have unique needs. Send us a message, and we will get back to you soon.


Thank you,


Sandy Fadale CISM, CGEIT, CRISC, CISA

Founder & CEO

Sandy Fadale InfoSec Consulting Ltd.

Moncton, NB, Canada

(506) 874-0864

Sandy Fadale InfoSec Consulting Ltd.

(506) 874-0864

Copyright © 2025 Sandy Fadale InfoSec Consulting Ltd. - All Rights Reserved.

Powered by

This website uses cookies.

We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

Accept