Skip to content
The operators

Small by design.Senior by requirement.

There is no bench of juniors here learning on your infrastructure. Every operator on this page carries their discipline personally — and answers to a founder who still signs every report.

6
Named operators
4
Disciplines, one standard
24/7/365
The watch
0
Successful breaches

Dept — Leadership

Stephan Garofalo — Founder & Director, GMAN IT
GMAN-DIR-01

Stephan Garofalo

Founder & Director · Melbourne, est. 2019

Founded the firm after years of watching Australian businesses breached behind the word “fine.” Sets the engagement standard personally: every Cyber Risk Assessment findings review still crosses his desk before it reaches a client’s.

The archetype he hires to — and holds himself to — is The Protector: counsel before crisis, loyalty without noise, three moves ahead. The full story is its own page.

StrategyClient trustThe standard
The roster

Operators, by discipline.

Filed the way we actually work: three departments, each accountable for its own craft, all answerable to the same code.

Dept — Security Operations· 3 operators

  • EM

    GMAN-OPS-01 · Role — Head of Security Operations

    Elena Marchetti

    Head of Security Operations

    Built the 24/7 watch after a decade running enterprise security operations in telco and banking. Owns detection engineering and the escalation discipline — the sub-15-minute critical response is her number, and she defends it. CISSP.

    • Detection & response
    • Escalation discipline
    • The watch floor
  • DO

    GMAN-OPS-02 · Role — Lead Security Engineer

    Daniel Okafor

    Lead Security Engineer

    Hardening is his craft: EDR fleets, Microsoft 365 tenancies, segmented networks. Spent years securing environments for Australian health providers, where a default configuration is a notifiable incident waiting to happen.

    • Endpoint hardening
    • Cloud tenancies
    • Network segmentation
  • JW

    GMAN-OPS-03 · Role — Offensive Security Lead

    James Whitford

    Offensive Security Lead

    Our resident adversary. OSCP-certified, formerly a consulting attacker for financial-services clients, he breaks what we build before anyone else can — then writes findings a board can actually read.

    • Penetration testing
    • Red-team exercises
    • Attack-path mapping

Dept — Governance & Compliance· 1 operator

  • RV

    GMAN-GOV-01 · Role — vCISO & Compliance Lead

    Rhiannon Vo

    vCISO & Compliance Lead

    Ex-Big-Four cyber practice. Translates Essential Eight, ISO 27001 and CPS 234 into decisions a director can defend, and sits as virtual CISO for Fortress clients — the calm voice when the regulator writes first. CISM.

    • vCISO advisory
    • Board reporting
    • Framework readiness

Dept — Client Partnerships· 1 operator

  • BC

    GMAN-CLT-01 · Role — Client Partnerships Manager

    Bronte Callaghan

    Client Partnerships Manager

    Runs onboarding and the long relationship. Every quarterly review lands prepared, every question finds its owner, and no client of hers has ever had to chase us for an answer — a record she intends to keep.

    • Onboarding
    • Quarterly reviews
    • The long relationship
The unnamed

Some names you will never read here.

The analysts on our 24/7 watch are not listed on this page — and that is deliberate. Attackers research the security staff of the firms they target; publishing the watch roster would hand them the first page of their playbook.

So the operators who triage at 3am stay anonymous in public and accountable in private. You meet them when you need them, they already know your environment, and their record speaks in the only numbers that matter.

The watch, on the record

0
Successful breaches on our watch
<15 min
Critical-incident response
100%
Client retention
Joining the roster

Not every business qualifies.Not every operator does either.

Three filters sit between an impressive CV and a seat on this page.

  1. 01

    Proven under pressure

    No one learns incident response on your incident. Every operator arrives senior, with scars and references.

  2. 02

    Discreet by nature

    We vet character as hard as capability. What our people learn about your business goes nowhere, ever.

  3. 03

    Held to the code

    The five values are hiring criteria, not wall art. Miss the standard once and it is a conversation. Twice, and it isn't.

Meet us where it matters — across your risk register.

The fastest way to judge this team is to watch it work. The Cyber Risk Assessment puts our operators on your systems and their findings in your hands.