cythera-logo-darkmode
Are you experiencing a security incident?
Incident Response
Assess & Improve
Detect & Respond
Protect & Secure
Advise & Empower
Resources
Case Studies
Real-world examples
Articles
In-depth insights
Advisories
Newly discovered threats
About us
Leadership Team
Meet the experts
Events
Join upcoming events
Award & Certifications
Industry recognitions
Vendor Partners
Trusted vendors
Talk to an expert
Service Category
Services
Popular Services
Employee Cyber Training & Awareness
Train smart and stay secure
Advisory
Secure smarter with strategic security advisory
Managed Protection
Always-on protection. Smarter security
Security Architecture
Security that drives real results, cloud to full stack
Digital Forensics & Incident Response
DFIR experts, ready when you need them.
Cyber Threat Intelligence
Real time insights from Cassini CTI
Managed Detection & Response
Our experts watch, so you don’t have to.
Certification & Accreditation
Get certified with ease
Audit & Assurance
Audits you trust. Assurance that drives action.
Governance, Risk & Compliance
Simplfy compliance, strengthen protection
Cyber Maturity Assessments
Level up your cyber security game
Penetration Testing
Penetration testing that spots weaknesses
Case Studies
    
Articles
    
Advisories
    
Web Filter, CASB & DLP (Cloud Access Security Broker & Data Loss Prevention)
Web Application Penetration Testing
Vulnerability Management
Vulnerability Assessment
vITSM
Virtual Security Architect (vSecArch)
vCISO
System Security Plan
System Architecture, Design & Implementation
Strategic Security Consulting
SWIFT CSCF
Specialist Testing
Source Code Review
Social Engineering & Phishing
Security Policy and Standard Development
Security Incident Response Testing
Security Awareness Training
Secure Access Service Edge (SASE)
Risk Management
Risk Assessment
Red Teaming
Purple Teaming
NIST CSF Maturity Uplift
Payment Card Industry (PCI)
OT/SCADA Network Penetration Test
NIST CSF Assessment
ISO 27001
Internal Penetration Testing
Incident Response Tabletop Exercise
Incident Response
Forensics
External Penetration Testing
Executive & Board Reporting
Executive and Board Security Governance Training
Essential Eight Assessment
Endpoint Protection
Email Security
DevSecOps Review & Implementation
Denial of Service (DoS) Testing
Design Reviews
Dark Web Monitoring
Controls Validation Audit
Continuous Certification
Compliance Programme Management
Configuration Reviews
Cloud Security Configuration
Cloud Posture & Security
CIS Critical Controls Assessment
Automated Patch Management
CI/CD Health Check
Artificial Intelligence (AI) Penetration Test
All of Government Marketplace
Advanced OSINT Training Course
Application Penetration Tests
NIST CSF Assessment
ISO 27001
Internal Penetration Testing
External Penetration Testing
Essential Eight Assessment
Denial of Service (DoS) Testing
Dark Web Monitoring
cythera-logo-darkmode
Advise & Empower
Explore Solutions
Protect & Secure
Explore Solutions
Detect & Respond
Explore Solutions
Assess & Improve
Explore Solutions
Resources
Articles
Advisories
About Us
Explore Bastion
Leadership Team
Events
Award & Certifications
Our Community
Vendor Partners
Employee Cyber Training & Awareness
Advisory
Managed Protection
Security Architecture
Digital Forensics & Incident Response
Cyber Threat Intelligence
Managed Detection & Response
Certification & Accreditation
Audit & Assurance
Governance, Risk & Compliance
Cyber Maturity Assessments
Penetration Testing
Popular Services
NIST CSF Assessment
ISO 27001
Internal Penetration Testing
Incident Response
Talk to an expert
Resources
About Us
Articles
>
Meet the Experts: The People Behind Your Security
Cythera Cyber Security

Meet the Experts: The People Behind Your Security

Meet the real people behind your protection. Discover how Bastion and Cythera are reshaping cybersecurity through a human-first approach that spans from boardroom strategy to 24/7 threat response.
Talk to an expert

In cybersecurity, tools matter but people make the difference. 

We believe security outcomes are only as strong as the people behind them. That’s why we’re lifting the lid on the experts who power our managed security services, strategic advisory, and everything in between. This isn’t just about introducing faces. It’s about fostering transparency, building confidence, and showing our clients that we’re more than a vendor, we're their partner in security. 

People-First, By Design 

For Cythera and Bastion, people aren’t just part of the service, they are central to the architecture of how cybersecurity is delivered. 

From the outset, Cythera chose to go against the transactional model used by most managed security providers. Instead of a faceless support queue, every customer is assigned a named Lead Analyst, someone who acts as an embedded extension of their internal team. This analyst isn’t juggling dozens of unrelated clients. They’re building deep familiarity with your infrastructure, your users, and your unique risks. 

This isn’t just about relationships, it’s about results. A Lead Analyst can: 

  • Detect behavioural anomalies others miss 
  • Prioritise threats based on business context 
  • Act swiftly without handoffs or escalation delays 

“We’re not a tick-and-flick service. Our analysts know your systems, your people, your risks. That’s how we detect and stop threats early,” says Craig Joyce, Co-founder at Cythera. 

Combined with a hand-picked tech stack with best-of-breed partners, we ensure every analyst is trained to a deep level on the tools that we utilise. That focus translates to faster decisions, better investigations, and more effective responses - all rooted in real-world awareness. 

Moving Beyond the “Managed Security” Status Quo 

Most managed security providers follow a high-volume, low-context approach. Alerts are routed to Level 1 analysts using rigid playbooks. Escalations depend on predefined thresholds, and incident response is often handed off to separate teams who may have little to no knowledge of your business. 

“Every ticket that comes through our system is handled by a Level 3-trained analyst, we don’t split detection from response. We don’t split the team. And we don’t fragment customer knowledge.” explains Tim Sank, Cythera’s Co-founder and Sales Director. 

Where others measure success in tickets closed, Cythera is focused on risks resolved. Their approach eliminates internal silos, compresses response times, and ensures continuity from detection to remediation - all handled by someone who already knows the full context of your environment. 

It’s not commoditised monitoring. It’s outcome-driven security designed to align with how your business operates, and built to scale with you. 

Strategic by Design: Why Bastion's Approach Sets a New Standard 

While many cybersecurity firms begin and end with tools, Bastion starts with the business. As one of the region’s leading governance, risk, and compliance (GRC) consultancies, Bastion is a trusted partner of leading organisations. Helping them understand their risk posture, align security to business objectives, meet evolving regulatory obligations, and confidently report to boards, investors, and external auditors. 

But Bastion doesn’t just deliver frameworks or one-off audits. Their consultants become embedded strategic partners, helping clients navigate complexity over time; from ISO 27001 certification journeys to cloud migration risks and AI policy development. 

“We don’t push unnecessary services. We work with clients to define the outcomes they care about, and then build the security strategy to support that,” says Sam, Bastion’s Chief Strategy Officer. 

Where many consultancies rely on templated recommendations and superficial assessments, Bastion’s strength lies in deep client knowledge and tailored execution. With security consultants across ANZ, they’re able to match the right expertise to each engagement from risk specialists and compliance advisors to architects and vCISOs. 

“Our clients trust us to guide them through big decisions, because we’ve done it before, we understand their industry, and we stay invested beyond the initial engagement,” says Steve, Head of GRC. 

Why Bastion and Cythera Is a Game-Changer: 

In a market full of siloed services and generic offerings, the integration of Bastion and Cythera marks a rare and powerful shift: true end-to-end cybersecurity from strategy to execution delivered as one united team. 

Here’s what that means for clients: 

  • Boardroom to SOC coverage: From risk frameworks and ISO 27001 certification to 24/7 detection and response, you get one partner with full-spectrum capability. 
  • One security brain trust: Cross-functional teams collaborate in real-time. GRC consultants, pen testers, cloud architects, and lead analysts working as one. 
  • Speed + depth: When incidents strike, we don’t wait on third-party handovers. We activate 10+ specialists from both sides of the business to triage, investigate, and resolve. 
  • Confidence through consistency: Whether you're reporting to regulators or remediating a breach, you get a single voice, a single standard, and a shared understanding.

“Lots of solo vendors are good at one thing. We respect that. But what we’re building together is something bigger, something no single provider can match,” says Steve, Head of GRC at Bastion. 

Real Partnership, Real Impact 

Where Bastion defines the “why” of cybersecurity - the business case, the compliance drivers, the long-term risk strategy. Cythera delivers the “how” with operational precision and real-time threat defense. It’s in that connection, between vision and execution, that the Bastion + Cythera partnership becomes uniquely powerful. 

Cythera and Bastion clients aren’t just buying a service, they're building a relationship with a team that’s in it for the long haul. Whether it’s helping a client land their ISO 27001 certification, guiding a complex cloud migration, or stepping in during a critical security incident the team is there before, during, and long after. 

Why Now? 

The threat landscape is changing fast. From AI-driven risks to hyperconnected cloud environments, businesses need more than point solutions. They need partners who can evolve with them. 

“You can’t lock everything down anymore. You need adaptability, visibility, and expertise across the full security lifecycle,” says Sam. 

That’s what Bastion and Cythera delivers: a complete cybersecurity capability, purpose-built for today’s risks and tomorrow’s complexity. 

Ready to Meet Your Security Team? 

Behind every alert. Every risk assessment. Every strategic recommendation. There’s a person who knows your environment and is committed to protecting it. 

Let’s move beyond tools. Let’s put people back at the centre of security. 

Events

Latest events

Join Cythera experts for networking events, technical briefings, and hands-on workshops hosted throughout the year.
View all events
No items found.
Cyber security news

Latest advisories

Stay ahead of emerging threats with our expert blog posts, research, and industry updates.
Silverstripe - Host Header Injection
Silverstripe CMS is affected by a Host Header Injection flaw, which can be exploited to manipulate password reset workflows, potentially redirecting or compromising user data.
FarCry Core Framework - Multiple Issues
FarCry Core contains multiple vulnerabilities that could let unauthenticated users upload arbitrary files and execute remote code on the hosting server.
Silverstripe – Cross-Site Scripting (XSS) Vulnerability
With local organisation admin credentials, an attacker can exploit the API to create, delete, or revert virtual machine snapshots in other organisations’ Virtual Data Centres (VDCs), breaching isolation boundaries.
Advise & Empower
Protect & Secure
Detect & Respond
Assess & Improve
Back to top
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Dark
Resources
Case StudiesArticlesAdvisoriesOur ISO 27001 Certificate
About UsLeadership TeamEventsAwards & CertificationsOur CommunityVendor Partnership
Are you experiencing a security breach?
Incident Response
1300 298 437
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
© Copyright 2025. All rights reserved