(1).jpg)
WHO WE ARE
DAO Security provides senior-led cybersecurity advisory for organisations navigating regulatory pressure, third-party risk, and operational resilience demands. We work with financial services firms, fintechs, healthcare providers, and PE-backed businesses across the UK and EU - delivering the clarity and control that boards, regulators, and clients expect.
We specialise in the areas where cybersecurity meets business risk: rapid assessments for M&A and supplier due diligence, fractional CISO services for firms without a full-time security leader, DORA and operational resilience readiness, and identity and AI risk controls. Every engagement is scoped to your context and delivered by the same senior practitioners who designed the approach. No handoff to junior teams, no padded timelines.
.jpg)
DAO Security is a small senior team by design. That is not a brand choice; it is a delivery choice. It means the person you speak to is the person doing the work, and the work stays grounded in practical reality. We start by agreeing what good looks like in your context and what decisions you need to make. We identify the few things that materially change risk and confidence, translate that into actions with owners and sequencing, and remain involved long enough to make sure the outcomes land. No fear-based messaging. No dependency creation. The goal is to leave you with stronger control, clearer governance, and less to worry about.
Andrew B.
Founder & Principal Consultant
Andrew founded DAO Security after two decades leading cybersecurity at the sharp end - most recently as Head of Cybersecurity for a major international corporation, where he built and ran the security function across multiple geographies, regulatory regimes, and business lines.
His background is in regulated environments where getting security wrong has real consequences: financial services, critical national infrastructure, and PE-backed businesses scaling under pressure. He has sat in the board meetings, handled the regulator conversations, and managed the incidents that most consultants only read about in case studies.
He started DAO Security because he kept seeing the same problem: organisations spending heavily on security tools and frameworks but still unable to answer the basic questions their boards, auditors, and clients were asking. The gap was never technology - it was leadership, clarity, and someone willing to own the problem. That is what DAO Security provides.
