Strategic consulting for organizations developing mature, risk-based security capabilities
Stellaria Labs helps organizations build security programs grounded in practical risk management. With a foundation in governance, risk, and compliance (GRC) and broad technical experience across cybersecurity, I work with executives and security leaders to develop programs that are mature, scalable, and prove their value.
Currently working with a regional nonprofit organization on PCI-DSS compliance and security program development.
Build your security roadmap from the ground up. I help organizations develop comprehensive security programs using risk-based approaches to resource allocation. Together, we'll define the right scope and structure for your security function, ensuring decisions are grounded in business reality rather than checkbox compliance.
Navigate PCI-DSS compliance and other regulatory requirements with frameworks that guide rather than constrain. I help implement industry standards (NIST, ISO, CIS) and create governance structures that enable your team to make smart, consistent security decisions. The goal is compliance that works for your organization, not just satisfies auditors.
Evaluate your current security maturity and develop practical improvement plans. I work with organizations to understand where they are, define where they need to be, and build sustainable programs that grow with them. Focus on capabilities that prove their value and scale as your organization evolves.
Ready to build a security program that works? Let's talk about your organization's needs.
Email: stellaria@stellaria.io
Location: Based in Indiana, serving clients across the United States
Remote-first consulting with on-site availability for key meetings and strategic sessions.