Strategic Security Advisory

Automated Pentesting, Technical Due Diligence, Cloud GRC and Expert Governance for scaling enterprises.

No BS cyber security services.

Book a Call

We provide the clarity, compliance and confidence you need to secure your digital future.

Navigate to the next section
Handré van der Merwe
By In Updates

Joint Standard 2 has been in force for 11 months. Most SA financial institutions are still not compliant. Here is the enforcement reality

Joint Standard 2 of 2024, the FSCA and Prudential Authority's cybersecurity and cyber resilience standard, commenced on 1 June 2025.…
Read More

I am a Cyber Security Professional with nearly two decades of technical expertise, bridging the gap between digital implementation and strategic security assurance.

Founded in 2007 following a year-long sabbatical through South America, Libertad (Spanish for Freedom) was born from a desire to do work that actually matters. I chose to build a practice that favours clarity and authenticity over complexity and results over bureaucracy.

My career began within a traditional IT Audit model, where I developed a deep appreciation for logic, control and risk management. While these environments provided the core discipline of my craft, I knew my true value lay in combining those standards with a more agile, hands-on approach to technology.

Securing your growth from startup to scale. We provide the senior expertise needed to navigate risk and win enterprise trust, delivered through a flexible, high-impact model.

Download Company Profile

Delivered 200+ Projects

Nearly 20 years experience

Certified Professional

View Services

How we can help you

Services

Libertad Advisory provides high-level security and governance for organisations that value agility and precision. We leverage nearly two decades of technical experience to bridge the gap between complex digital architecture and rigorous global compliance standards.

By moving beyond generic checklists, we provide the technical clarity and executive assurance needed to scale securely.

Learn more
01

Automated Pentesting

Continuous, automated external security testing, powered by the Ironsky platform.

02

Vulnerability & OSINT Testing

Identification and exploitation of security weaknesses across your web, mobile apps and infrastructure to provide actionable remediation and defense-in-depth.

03

Cloud Security & Config Assurance

Specialised security reviews and configuration checks for AWS, Azure and M365 environments, built on deep enterprise banking experience.

04

Technical Due Diligence

Deep-dive technical evaluations for investors and scaling startups to uncover hidden risks before acquisitions or critical transitions.

05

IT Audit & GRC Advisory

Comprehensive risk assessments and framework implementation (ISO 27001, NIST, ISF and others) delivered with the agility of a boutique firm.

Latest Updates

SECURE FREEDOM

Joint Standard 2 has been in force for 11 months. Most SA financial institutions are still not compliant. Here is the enforcement realityUpdates

Joint Standard 2 has been in force for 11 months. Most SA financial institutions are still not compliant. Here is the enforcement reality

Joint Standard 2 of 2024, the FSCA and Prudential Authority's cybersecurity and cyber resilience standard,…
Why your Microsoft Teams External access is failingTechnical Field Notes

Why your Microsoft Teams External access is failing

In a recent migration project, we encountered a technical roadblock that appeared to defy the…
Why small businesses are paying for security they don’t have

Why small businesses are paying for security they don’t have

Read More
Don’t let the flowers wilt

Don’t let the flowers wilt

Read More

View all