Australian frameworks first
SecBoost is shaped around Essential Eight, ISM documentation, evidence management and IRAP preparation rather than generic checklist compliance.
About SecBoost
An Australian team focused on practical security assurance workflows.
SecBoost helps organisations manage Essential Eight reporting, ISM documentation, evidence and IRAP assessment workflows in one structured workspace.
Where the idea came from
Assessment preparation should not collapse into loose files and disconnected spreadsheets.
Australian teams preparing for Essential Eight, ISM and IRAP work often end up managing scope, control notes, evidence, registers and documents across disconnected tools. SecBoost brings that material into one workflow so it is easier to prepare, review and maintain.
The early product direction came from a practical problem: the same project context, control decisions and evidence records should be able to produce useful documents, not just sit in a tracker. That led to the Documentation Suite, SSP Annex, CCM and report outputs becoming core parts of the platform.
This matters for smaller organisations that need to reduce assessment preparation effort and cost, and for IRAP assessors or consultants who need clients to arrive with cleaner material. SecBoost does not replace security expertise or assessor judgement; it gives both sides a more structured place to work.
Principles
The product follows the workflow, not the other way around.
Evidence stays connected to the claim
Implementation notes, files, registers and assessor activity remain tied to the relevant control record so teams can maintain the material after review.
Assessor judgement remains central
The platform structures scope, evidence and workflow activity, but independent professional judgement stays with the assessor or reviewer.
Documents are outputs, not separate islands
Reports, matrices, policies, standards and SSP content are generated from the same project context, control decisions and implementation records.
Founders
Founder-led and close to the assessment workflow.
SecBoost is led by Linton Henderson and Graham Matthews, drawing on long experience in secure software, government and defence technology, ISM-aligned systems and customer-focused product delivery.
Linton Henderson
Co-founder
Linton has spent more than 20 years leading software delivery for Australian customers, from DSTO and carsales.com.au through to secure collaboration work for government, defence and enterprise clients. As Software Development Manager at CommandHub, he led the team translating complex security and collaboration requirements into a robust, user-focused platform aligned with ISM expectations. At SecBoost, he focuses on product direction, customer workflows and turning messy compliance tasks into software teams can actually use.
LinkedIn
Graham Matthews
Co-founder
Graham has spent his career building secure SaaS and collaboration systems for government, defence and enterprise customers. As CTO of CommandHub, he led the architecture and security strategy for an ISM-aligned platform used in sensitive environments, and has first-hand experience helping small and mid-sized businesses prepare for IRAP assessment. At SecBoost, he brings that security background to the technical model behind ISM controls, evidence records, assessor workflow and generated documentation.
LinkedInContact
Talk to the people behind SecBoost
Tell us about your organisation, system count, target maturity level, assessment timing and where your current evidence or documentation workflow is getting difficult.
SecBoost works with Australian organisations preparing Essential Eight reports, ISM document packs and IRAP assessment workflows.
Thank you. Your message has been sent.
Something went wrong. Please try again.