Our mission
Trust as a continuous operation
Most security and compliance programs are built around events. An audit happens. A questionnaire arrives. A certification lapses. Organisations scramble, deliver, and then stand down until the next one.
CybrGen was founded on a different premise. Trust is not something you achieve and then store. It is something you operate. It requires structured programs, live evidence, ongoing vendor governance and platforms that make the work visible and repeatable.
We deliver that across advisory, managed services and platform-enabled operations, working with organisations in financial services, SaaS, public sector and regulated supply chains across New Zealand, Australia, India and beyond.
“Compliance should be a running function, not a project you dust off before an audit.”
20+
Years experience
6+
Frameworks delivered
Global
Engagement coverage
4
Platform products
How we work
Principles that shape every engagement
Not a values poster. The way we actually operate.
Senior-led delivery
Every engagement is led by a senior practitioner. We do not staff client work with juniors and supervise from a distance.
Outcomes over outputs
We measure success by audit outcomes, risk reduction and operational readiness. Not by deliverable count or hours billed.
Platform-backed advisory
Our advisory programs are supported by platforms that make evidence, governance and monitoring visible and continuous.
Honest scoping
We scope what you actually need. If a lighter engagement solves your problem, that is what we recommend.
Sustained readiness
We design programs with ongoing operation in mind. The goal is a client that does not need to rebuild their compliance posture every audit cycle.
Practitioner integrity
We will tell you when your control environment has a real problem, even if it is not what you want to hear before an audit.
The team
Senior practitioners. Real experience.
Every CybrGen engagement is led or backed by practitioners who have done this work at the highest level, across Big 4, enterprise security and regulated sectors.
Krishna Pasumarthi
Managing Director and CEO
Founder and CEO of CybrGen with over 20 years of experience across IT risk, cybersecurity, assurance and digital trust. Krishna has held leadership roles across major consulting environments including PwC, Deloitte and KPMG, and has advised organisations on security strategy, third-party risk, compliance and managed security programs.
Hrsikesa Bhai
Director, Head of Cyber Security and Resilience
Senior executive with over 17 years of experience leading cyber, technology risk, resilience and digital trust initiatives. Hrsikesa brings strong enterprise delivery capability across cyber strategy, third-party risk, business resilience and board-level risk communication.
David Loader
Head of Growth
Growth leader with deep cybersecurity market experience, focused on building structured go-to-market motions, strategic partnerships and repeatable pipeline. David supports CybrGen's expansion with a particular focus on UK growth and helping SMEs improve cyber resilience without enterprise-level overhead.
Sanjay V Darbha
Head, NBFC Compliance Service Line
Expert in NBFC regulatory compliance and financial services, with deep experience across RBI expectations, control environments and risk management frameworks for regulated organisations.
Akash Motkar
Cyber Security Analyst
Certified Ethical Hacker and penetration testing specialist with experience in web application security, API testing, Android security testing, bug hunting and red team operations.
Divya Chaudhari
Cyber Security Analyst
Cybersecurity analyst specialising in penetration testing, vulnerability assessments, web application security, API testing and structured security analysis across multiple environments.
Industries we serve
Regulated, security-sensitive environments
We operate where security and trust requirements are high and the cost of getting it wrong is significant.
Financial Services
Security and compliance programs for regulated financial institutions, fintech platforms and NBFCs.
SaaS and Technology
Certification readiness and security maturity programs for technology companies building customer trust.
Public Sector
Security assurance and third-party oversight for government agencies and public organisations.
Regulated Suppliers
Customer security reviews and certification preparation for organisations in regulated supply chains.
Healthcare and Life Sciences
Security testing and audit readiness for healthcare platforms and regulated data environments.
Casinos and Gaming
Security and compliance programs for gaming operators and online platforms under regulatory oversight.
Where we operate
New Zealand headquartered. Global reach.
Based in Auckland, operating across New Zealand, Australia, India and global regulated markets. Senior-led delivery with no geography constraint on engagements.