About Jeff Bennison

Wriben Consultancy Services was born out of over 20 years experience working with a variety of organisations around the globe assisting them with a wide range of security strategies and transformation programmes. 

Jeff is now ready to manage his own destiny by offering out his wealth of experience without the overhead of a revenue greedy consultancy organisation.

The Services provided briefly encompass the following areas. Further details can be shared by scheduling a meeting with Jeff who will be more than happy to discuss your requirements and map them directly to specific areas of his expertise. 

ISO27001 - I have been an ISO27001 Lead Auditor since 2008 and prior to that I created, implemented and managed my own ISMS environments. I have worked with many organisations either to formally certify or just to align with the standard to improve their information security posture and reduce organisational risk. I have attended the transition course for the new 2022 version (and also passed the exam). Wriben Consultancy Services is also registered with BSI on their Associate Consultant Program which allows me and my clients to benefit from discounted copies of the standards and also discounted training.

 PCI DSS - I became a QSA in 2010 and maintained that qualification until I left my last permanent role in May 2023. I have guided hundreds of organisations along their compliance journey, often identifying smart ways for them to comply and sometimes reduce their scope which in turn reduces the time, cost and effort in maintaining the compliance environment. Similar to ISO27001 prior to becoming a QSA I created, implemented and managed my own cardholder data environments.

 Third Party Assurance/Due Diligence - During my career a large percentage of the remit was in and outbound due diligence. As a consultant I have guided multiple organisations through the due diligence process and also been involved with reviewing returned questionnaires and creating a plan of action/next steps.

Business Continuity - I hold current ISO22301 Lead Auditor qualification and have managed my own BC environments and also helped multiple organisations create, manage and test their BC and incident response plans to ensure they a better prepared in case they experience a disruptive event.

Jeff has over 25 years experience working with information security. Jeff aligned one of the UKs largest disability charity organisations (Leonard Cheshire Disability) to ISO7799 (as it was to become ISO27001) to ensure critical processes were documented and followed and also the Security Policies and Procedures were known to all staff. He then joined credit reference agency TransUnion (previously Call Credit) where he initially assisted in the readiness preparation phase to certify 5 group organisations under a single certificate. He then managed the ISMS and coordinated surveilance visits, internal audits and document management amongst other activities.

Jeff then transitioned over to become a consultant working with multiple organisations across the globe to guide them through their own compliance journeys and beyond. Working with the likes of Rolls Royce, Vocalink BACS and cash machines transactions, Correla energy platforms, Digicell – a major telephony and mobile network provider in Southern America and the Carribean, Pokerstars – the world’s largest online gambling company, Barratt Home Pensions, Mastercard, Barclays, Lloyds, Fredrickson Internation Ltd debt recovery, Lowells debt collection agency, GE Energy, HP and many more. 

Jeff can provide services in the following areas:

• ISO27001
• Payment Card Industry Data Security Standard (PCI DSS)
• ISO22301 Business Continuity
• Third Party Assurance/Due Diligence