About me



Garland Sharratt
Consultant in Cybersecurity / Information Security & Resilience
CISM, CCSK, CIPP/E, MBA
Kelowna (Okanagan), British Columbia, Canada


Website/Blog: http://www.gsharratt.com
Twitter: @GarlandSharratt or https://twitter.com/GarlandSharratt
LinkedIn: https://linkedin.com/in/garlandsharratt
Email: garland@gsharratt.com


My information security / cybersecurity consulting services include:
  • Governance, risk management, and compliance (GRC)
  • Security Threat and Risk assessments (STRAs)
  • Gap analysis
  • Risk management and assessments
  • Third party risk management, including cloud security
  • Resilience, business continuity, disaster recovery
  • Compliance, privacy
  • Security program design, organization, and business tie-in
  • Security policies creation and management
  • Security architecture and business bridging
  • Security controls design
  • Security awareness training
  • Mentoring/coaching for infosec primes  
  • All to mitigate risks like phishing, ransomware, malware, cloud risks, network and device risks, privacy, other data breaches, and natural disasters/events.

To help you understand how I work with clients and where I fit in the infosec ecosystem:
  • My focus is on helping you put in place controls to reduce your information security risks
  • I don't replace your IT person/team (internal or outsourced)
  • I don't replace your infosec person/team, if you have one
  • I usually don't do hands-on work such as logging into consoles or configuring equipment/services
  • I'm not the person you call when you have a security incident, but I help you identify -- ahead of time -- who that is

If you're familiar with the "stack" of information security, my work includes GRC and security architecture but not security engineering or security operations.

These services can be provided on a project basis and/or an ongoing part-time basis, for small to medium businesses, and a discounted rate applies for non-profits.  A certain subset of these services apply to high net worth (HNW) individuals and families.


My bio

Garland Sharratt is a senior ICT and information security professional with rich experience in both the technical and business aspects of defining, designing, developing, securing, managing, and promoting ICT products and services. His key areas of expertise include information security, IT, Internet services / SaaS, telecommunications, and VoIP, but just as important are the consulting and communication skills that allow him to work effectively with people at all levels both inside and outside the organization.

As an evangelist and chief architect in IP media processing at Convedia, Garland led standards activities, presented at industry events globally, was published in trade journals, was awarded a patent, and was co-author of an IETF Informational RFC that remains a de facto industry standard. As security architect at Hootsuite, Garland was responsible for the security architecture of Hootsuite's IT, product, and production systems, for third party risk, and for sales support for security, compliance, and privacy/data protection. In the start-up space Garland has acted as a mentor for start-ups in various accelerator programs and competitions for more than ten years.

Garland has lived and worked in Canada, the U.S., and the U.K., holds a BASc in Electrical Engineering, an MBA, and a Certified Information Security Manager (CISM) certification.


Member of the Kelowna Chamber of Commerce...
All data and information provided on this site is for informational and educational purposes only. This site makes no representations as to accuracy, completeness, currentness, suitability, or validity of any information on this site and will not be liable for any errors, omissions, or delays in this information or any losses, injuries, or damages arising from its display or use. All information is provided on an as-is basis.  The opinions expressed here represent my own and not those of any current or past employer(s) or contractor(s).