I'm Margaret. I work with healthcare organizations, healthtech companies, and regulated businesses across Canada and the US. Whether you're heading into an audit, navigating a new privacy regulation, or trying to figure out what AI is actually doing to your data — I help you get clear, get compliant, and stay there.
Free, no tools to install. Plain-language report of your security posture — delivered in 48 hours.
Get a free email security scan Book a 20-min call insteadMost of my clients come to me when they've hit a wall — an audit deadline, a new regulatory requirement, or a board that suddenly wants answers about cyber risk. Here's where I tend to be most useful.
You need a CISO. You don't need to pay for one full-time. I become your strategic security lead — owning your risk program, presenting to the board, and making sure your team knows what to do when things go sideways.
I don't just check whether your policies exist — I find out if your operations would actually survive a regulator's questions or an enterprise client's security review. Then I help you fix it before they ask.
Your staff are already using AI tools. Most organizations haven't assessed a single one. I help you understand what's in use, where your data is going, whose jurisdiction it's under — and what you're actually on the hook for.
Traffic-light risk reports don't move boards to action. FAIR does. I translate your risk scenarios into a dollar range — the probable financial impact — so your leadership can make decisions with real numbers instead of colours.
Bolting privacy on after the fact is expensive and tends to break. I embed data protection into your products and processes from the start — PIAs, vendor reviews, consent gaps, data flow mapping.
Boards are being held personally accountable for cybersecurity failures — but most receive technical briefings they can't evaluate. I translate risk into business language: what's the real exposure, what decisions need to be made, and what good governance actually looks like.
I do my best work with organizations that are moving fast, dealing with sensitive data, and need someone who speaks both security and business.