Fulcrum Advisory Fulcrum AdvisorySecurity leadership that connects strategy to execution
About David

From the first BlackBerry on Exchange 2000 to watching Scattered Spider in real time.

After spending years in Big 4 consulting, I did what any sane person would do. I built something of my own.

Why Fulcrum exists

Cybersecurity has come a long way since my first PC in 1992. I have spent 25 years watching that evolution from the inside — deploying infrastructure before most organizations had a security policy, building the first detection pipelines before SIEM was a household word, and standing in front of boards explaining why the breach happened and what comes next.

Through Big 4 consulting, I kept seeing the same pattern. Organizations with budget, tooling, dashboards, and talented people — but no fixed point connecting strategy to architecture to day-to-day operations. Programs that looked mature on paper and underperformed in practice. Vendors selling more tools into environments that needed less noise and more signal.

The era of six months and "here's your report, good luck" is over.

Fulcrum Advisory exists because organizations deserve direct access to senior security leadership that actually solves the problem — not one that produces documentation about it. I am not here to sell you more tools. I am the fixed point that makes everything you already have work harder, better, smarter.

25 years of the real thing

Not a career built on slide decks. A career built on what actually happens when security works — and what happens when it doesn't.

1992 →
It started with a PC and a curiosity that never stopped From building early infrastructure and messaging platforms to deploying the first BlackBerry Enterprise Server on Exchange 2000 — a foundation built on understanding how systems actually work, not just how they're documented.
MDR
Built and led a global MDR service protecting organizations across energy, health, public sector, and financial services Designed the operating model, the detection architecture, the escalation frameworks, and the analyst workflows. Drove mean time to contain down to 68 minutes across a complex enterprise client portfolio.
IR
Front-line incident response including major ransomware events Including watching Scattered Spider operate in real time. Incident command is not a tabletop exercise — it is a discipline built under pressure, and I have built it.
Sentinel
Microsoft Sentinel architecture and detection engineering at scale ASIM parser design, KQL detection engineering, analytic rule validation, and MDR service delivery across public sector, energy, health, and financial services clients.
People
Security awareness that people actually remember Programs that earn 4.8-star reviews because they are built around how people actually think and behave — not around compliance checkboxes.
vCISO
Board-level reporting and fractional CISO leadership Translating technical risk into board language, building governance frameworks, and owning the security program for organizations that need senior leadership without the full-time overhead.
25+
Years in enterprise IT and security
<68 min
Mean time to contain — global MDR service
4.8 ★
Security awareness program reviews

What working with me looks like

I treat your organization as if it were mine. That means I care about the outcome, not the deliverable count. It means I tell you what is actually broken, not what is comfortable to hear. It means the advice I give you is the same advice I would follow.

Security that works is built on promises kept and partnerships that last. Not on renewal cycles and scope expansions. If I take on your engagement, I am invested in it — your risk is my problem to solve, your team is mine to protect, and your confidence in the program is what I measure success against.

Cybersecurity has never moved faster than it does right now. Most organizations' processes were not built for this pace. Fulcrum Advisory is.

Get in touch

Let's talk about what you're dealing with.

No forms. No intake process. No junior associate. Start with a specific problem, an initiative under pressure, or a gap in your security program — and we'll figure out the rest from there.

[email protected]