expert brisbane Cyber security company

Trusted for over 25 years

DotSec is an established Brisbane cyber security company. We’ve worked from our heritage-listed building in Brisbane’s CBD for over 25 years, providing security services to businesses from Cairns to Goondiwindi and Brisbane, and to Queensland local and regional government.

Our team have supported businesses across Queensland with service including penetration testing, managed security services (including SOC/SIEM/MDR, and incident response) and governance, risk and compliance services. Our Brisbane cyber security team combines senior engineering expertise with certified assessors, threat analysts and compliance specialists to helping our clients throughout the state reduce risk, strengthen control effectiveness and meet their regulatory and customer obligations.

Drop into our Brisbane office at 303 Adelaide St. and have a chat about how a long-term Queensland local can help your business today.

Premier Brisbane cyber security Company

ISO 27001 consulting

Practical and experienced Australian ISO 27001 and ISMS consulting services. We have helped a number of Queensland businesses, including a software development house head-quartered in Adelaide St., to establish, implement and maintain an effective information security management system (ISMS).

Penetration tests

DotSec’s penetration tests are conducted by experienced, Australian testers who understand real-world attacks and secure-system development. We have delivered clear, actionable recommendations for Queensland businesses across Queensland, from NQ to Goondiwindi, and from Rocky to the Brisbane CBD.

PCI DSS

dotSec stands out among other PCI DSS companies in Australia: We are not only a PCI QSA company, we are a PCI DSS-compliant service provider so we have first-hand compliance experience. And we’ve used our experience to help Queensland, household-name retailers in the furniture, beverage, fashion and food industries.

WAF and app-sec

Our WAF services have shielded national and local organisations with offices in Brisbane, including a Queensland-based national regulator, and QLD-based online retailers.

Web Application Firewalls (WAFs) are critical for protecting web applications and services, by inspecting and filtering out malicious requests before they reach your web servers.

Identity management

Multi-Factor Authentication (MFA) and Single Sign-On (SSO) reduce password risks, simplify access, and make it easy for authenticated, verified users reach sensitive systems.

We’ve helped a range of QLD businesses to implement and manage MFA and SSO, including Queensland electricity retailers and NEM participants.

Vulnerability management

dotSec provides comprehensive vulnerability management services.

Our vulnerability-management services have helped Brisbane businesses in the online retail, legal (QLD and national), and identity-management sectors.

All findings are analysed in the context of your specific environment, priorities and threat landscape.

Phishing and soc eng

We don’t just test whether users will click a suspicious link — we also run exercises, simulating phishing attacks that are capable of bypassing multi-factor authentication (MFA) protections.

Our phishing clients include Brisbane and Sunshine Coast schools, online retailers, and Brisbane and national businesses in the legal and energy sectors.

Penetration testing

DotSec’s penetration testing services help you identify and reduce technical security risks across your applications, cloud services and internal networks. Clear, actionable recommendations, every time!

Over 25 years, we’ve conducted hundreds of pen tests, mostly for clients in Queensland, from law firms in the CBD and out west, to retailers with head offices, factories and warehouses located in Brisbane.

Managed SOC/SIEM

dotSec has provided Australian managed SOC, SIEM and EDR services for 15 years. PCI DSS-compliant and ISO 27001-certified. Advanced log analytics, threat detection and expert investigation services.

We were one of the first Brisbane cyber consultants to use Splunk, and for over 15 years, dotSec’s SIEM services have protect ed Brisbane and QLD businesses in the retail, legal, energy, and local government sectors.

Secure configuration

We provide prioritised, practical guidance on how to implement secure configurations properly. Choose from automated deployment via Intune for Windows, Ansible for Linux or Cloud Formation for AWS.

One of our first, major secure-deployment projects was for a national law firm with state head-office in Brisbane.

That was back in 2003, and they are still our client today!

Secure cloud hosting

Secure web hosting is fundamental to protecting online assets and customer data.

We’ve designed, deployed, managed, supported and/or maintained secure hosting services for Brisbane businesses in the state energy-retail, online retail and regulatory services.

And we’re able to utilise our skills in risk and compliance, secure configuration and hardening and MSOC/MSIEM.

CIS 18 Critical Controls

Evaluation against the CIS 18 Controls establishes a clear baseline for stakeholders, supporting evidence-based planning, budgeting, maturity-improvement and compliance decisions.

We’ve used the CS 18 as the basis for maturity-uplift projects for Brisbane businesses in the retail, fashion and construction sectors, to great effect!

Advisory services

We have over 25 years of cyber security experience, providing practical risk-based guidance, advisory and CISO services to a wide range of public and private organisations across Brisbane, QLD and Australia.

Our state-wide advisory services have assisted organisations, from local and state government, to Brisbane schools and colleges, online-retailers, architecture and construction, and more.

TRUST OUR CLIENTS

Great outcomes are achieved when smart people collaborate in a good environment, and when the customer’s expectations are met or exceeded in every engagement, project or task.

DotSec can only rely on our customer’s feedback to know, for certain, that great outcomes have been achieved, and the testimonials (included below) that have been provided indicate that is the case.

Cyber: It's all about risk

Prioritise

dotSec works with organisations to identify and prioritise risks based on operational realities, compliance requirements, and business goals, allowing you to understand where to focus your time and money.

Implement

Understanding risk is only valuable if you act on it. The next step is to implement practical, risk-based controls. Let us work with you and you’ll have working defences, aligned with your business risk profile.

Verify

Let us know how we can help

If your organisation needs reliable, Brisbane-based penetration testing, meaningful SIEM/MDR services or practical GRC support, DotSec delivers. Our Queensland team combines senior engineering capability with ISO 27001 and PCI DSS expertise to provide clear, actionable outcomes backed by more than 25 years of proven experience.