Independent cyber security advisory practice
About DAISEQ Advisory
Vendor-neutral by design. Independent of every vendor in the market.
Primary sectors: financial services, insurance, healthcare, energy, and adjacent regulated environments.
DAISEQ Advisory is an independent cyber security advisory practice focused on data and AI security effectiveness in regulated environments, founded by Brian Wawengkang following twenty years in senior cyber security leadership, with deep focus on data and cloud security.
Brian most recently led BCG's global Data Security and Cloud Protection capability across 50+ countries. Scope included the migration to Microsoft Purview and Zscaler, the design and rollout of the global classification framework, and the 24/7 MSSP-managed SOC integration that underpinned it. Before that he built Deloitte's Cloud Information Protection practice, established the Data Security practice at PwC, and led global CASB at Symantec.
Brian is a member of the Cloud Security Alliance Quantum Safe Computing Working Group, and is the author of The Assurance Paradox: why compliance doesn't equal data protection, published independently in May 2026.
Cyber security capability areas
Selected leadership achievements
Led a global data and cloud security platform consolidation across more than 50 countries, delivering significant cost savings, measurable endpoint performance improvement, and the foundation for a Zero Trust architectural posture.
Designed and led a regional data protection programme under a binding regulatory deadline, mitigating compliance risk in the eight-figure range. Engagement model was federated across business units, with external regulatory and partner stakeholders co-managed.
Exercised architectural conviction against established senior stakeholder direction on data and identity controls. Position was evidence-led, subsequently validated by outcomes.
The Assurance Paradox: why compliance doesn't equal data protection, published independently under DAISEQ Advisory.
Working principles
DAISEQ Advisory is vendor-neutral by design. No vendor partnerships, no reseller margin, no commercial incentive to recommend one platform over another.
All work is delivered by Brian directly. No associate delivery model. No commercial pressure to expand scope beyond the engagement agreed.
Each engagement has a published scope and a published indicative price band. Detailed engagement scope, assumptions, and deliverables are confirmed in the proposal following the initial conversation.
How to engage
The conversation is 30 minutes, on a call. We talk through what you're trying to solve. If there's a fit, you receive a written proposal within five working days. If there isn't, you receive an honest pointer to whoever I think would be a better fit. No follow-up sales sequences.
20 years in senior cyber security leadership · BCG · Deloitte · PwC · Symantec · Author, The Assurance Paradox · CSA Quantum Safe Computing Working Group
Get in touch
If you are carrying responsibility for data and AI security in a regulated organisation and want to talk through whether one of the three engagements fits, the starting point is a short call.
No qualification deck. A direct conversation about what you are trying to solve.