Founder & Principal Consultant
Security leadership experience built across regulated SaaS, enterprise assurance, higher education, and central government. Good Security exists to give growing NZ businesses the structure that buyers, insurers, and boards now expect.
Professional background
Most security consultants arrive with frameworks and leave with a report. Darren's background is different — it is built on years of operating inside organisations where security, privacy, and risk had to work in practice, not just on paper.
From leading security, compliance, resilience, and AI governance in regulated SaaS to building the response library, audit evidence, and operating controls used to answer scrutiny from financial services, aerospace, industrial enterprise, and pharmaceutical customers, from managing security across three university campuses to shaping policy and infrastructure discipline in central government — the thread is the same: make the work usable, keep it visible, and build it to survive real scrutiny.
Good Security brings that operating discipline to NZ businesses that are being asked harder questions than they can currently answer — by customers, insurers, boards, and regulators.
Career timeline
Private sector, higher education, and central government — each shaped the operating discipline behind Good Security.
Aug 2025 — Present
Docuvera
Leads global security, compliance, operational resilience, and enterprise AI governance for a regulated SaaS platform, including ISMS operation, audit readiness, incident response, and the AI risk programme.
Mar 2022 — Aug 2025
ASC / Author-it Software Co.
Led company-wide cybersecurity and operational transformation, built the master security response library, and established the audit and governance rhythm needed to answer regulated enterprise scrutiny.
Jul 2018 — Mar 2022
Massey University
Progressed into the associate director remit for security, information, records, and risk, taking accountability for cybersecurity oversight, major incident handling, and governance across three campuses.
Jun 2012 — Jul 2018
Ministry of Social Development
Progressed from core infrastructure leadership into enterprise information security assurance, building the policy discipline, service resilience, and cyber-risk rigour that shaped later security leadership work.
May 2008 — Jun 2012
New Zealand Transport Agency
Built early public-sector operating discipline through national mobility and infrastructure roles, including large-scale endpoint, connectivity, and service continuity responsibilities.
Why this work matters
Most NZ businesses do not need a full-time CISO. But they do need someone who can build credible reporting, map obligations to owners, produce evidence that answers real questions, and keep the work running after the first burst of urgency passes.
That is what Good Security does. Not theatre. Not a framework left on a shelf. Practical security leadership that makes the business easier to trust from the outside and easier to run from the inside.
Book a free consultation and find out what the right starting point looks like for your business.
