Evident Harbour

About Evident Harbour

---

Evident Harbour helps small and medium-sized businesses take a practical approach to information security, AI risk and compliance.

Many organisations want to improve how they manage security and emerging risks, but don’t always have the time or resources to build a full programme. Evident Harbour focuses on making things clear, proportionate and achievable, helping businesses understand their risks and take meaningful steps forward.

With experience across local government, MSPs, insurance and social housing, and working with frameworks such as ISO 27001, ISO 9001, ISO 20000-1 and NHS HSCN, the focus is always on keeping things grounded in real-world delivery rather than unnecessary complexity.

Alongside this, Evident Harbour is building simple tools to help SMEs better understand and manage AI and information security risks, particularly for organisations without dedicated in-house expertise.

Always happy to have a conversation, sense-check an approach, or provide guidance where needed.

Information Security and Risk Support? Practical support to help organisations understand and manage information security risks, aligned with frameworks such as ISO 27001. Focused on clear, actionable steps rather than overcomplicated processes.

AI Risk and Governance Guidance?Helping businesses take a sensible, proportionate approach to managing risks associated with AI adoption, including data exposure, compliance considerations and operational use.

ISO Framework Implementation Support?Experience supporting organisations working towards or maintaining standards such as ISO 27001, ISO 9001 and ISO 20000-1, tailored to the size and maturity of the business.

SME-Focused Security and Compliance?Designed specifically for organisations without dedicated in-house teams, providing a structured but manageable approach to improving security and governance.

Advisory and Second Opinion?Happy to provide informal guidance, sense-check existing approaches, or support decision-making where organisations need an independent view.

Emerging Risk and Practical Tools?Development of simple tools and approaches to help organisations better understand and manage modern risks, particularly around AI and data use.

Evident Harbour is led by a Certified Information Security Manager (CISM) and Doctoral candidate in Artificial Intelligence, combining practical industry experience with current research in AI and risk.

Experience includes working across local government, insurance, managed service providers (MSPs) and social housing, supporting and delivering programmes aligned to:
- ISO 27001 (information security).
- ISO 9001 (quality management).
- ISO 20000-1 (service management).
- NHS HSCN compliance.
- AI and information security risk management.

The focus throughout has been on helping organisations take a practical, proportionate approach - turning complex frameworks and requirements into something that works in real-world environments.