About

Who we are

Blueprint is an information security consultancy based in Melbourne, Australia. We provide specialist advice on how to best protect your valuable business information. We help you get a clear picture of your risks and implement information security strategies tailored to your business.

What makes Blueprint different

Independent Advice

At Blueprint we provide independent advice. We don’t promote or resell IT security products so there’s no hidden agenda.

We are experts

We’re experienced, accredited information security experts, and passionate about what we do.

Experience and Accreditation:

We’re experienced, accredited information security experts, and passionate about what we do.

We have worked with clients in a variety of different industries. Highlights include:

  • Assisting multiple clients to achieve ISO 27001 certification.
  • Developing a comprehensive suite of information security policies for a big 4 Australian bank.
  • Creating a risk management framework and supporting tools for a major Australian retail enterprise.
  • Developing business continuity management policies, procedures and plans for a global health service provider.
  • Assisting an international legal firm to achieve compliance with the Australian Government Information Security Manual.

We have experience working with a variety of information security standards, guidelines and regulations. These include:

  • The ISO 27000 range of standards.
  • Payment Card Industry Data Security Standard (PCI DSS).
  • Australian Privacy Act.
  • COBIT.
  • Australian Government Information Security Manual (ISM).
  • Australian Government Protective Security Policy Framework (PSPF).
  • Australian Prudential Regulation Authority (APRA) guideline PPG 234.
  • Monetary Authority of Singapore (MAS) guideline IBTR.
  • SSAE 16, SOC 1, 2 and 3.

Our Managing Director

Jake Smith is an information security and risk management consultant with over twenty years experience in the information security field, both in Australia and Europe. Jake’s specialist skills and experience include:

  • Information security planning and strategy
  • ISO 27001 ISMS implementation
  • IRAP and ISM consulting and assessments
  • Information security policy development
  • Business continuity management
  • Development of information risk management frameworks and tools

Jake has consulted to a diverse range of clients in the finance, telecommunications, government, legal, health, manufacturing, utilities, and IT sectors. Coming from both an IT security and business management background, Jake has a unique insight into how technical security controls can be aligned with business objectives.

Jake has worked with many Australian and international information security and risk management standards, including the Australian Government Information Security Manual (ISM), the ISO/IEC 27000 range, ISO 31000, PCI DSS, APRA CPS 234 and CPG 234, NIST and COBIT.

Jake holds professional memberships with the Australian Information Security Association (AISA – Honorary Life Member), the Information Systems Audit & Control Association (ISACA), and (ISC)². He is also a member of the Standards Australia IT-012-04 committee which helps develop the ISO/IEC 27000 range of standards. As a member of this committee, Jake was involved in the development of the latest version of ISO/IEC 27001.