Welcome to a safe and happy place. We’ll look after you the whole way through your Information Security journey. We can help you to ISO 27001, with your InfoSec legal compliance (think GDPR, NIS 2 etc.) and with making sure that whatever your InfoSec needs, you get the most value for your effort and get there with the least pain. We promise.

How did we get here?

The idea of StrollingRock was born years ago. Life and a pandemic got in the way but we’re here now. Carolin Hellestam and Thomas Roberts have worked together for 10+ years in a variety of roles and companies. We share a simple but powerful vision: Less Pain. More Value. We believe that this is a good mantra for any work on policies, processes, compliance, training and more, but especially so in the context of Information Security. Let us show you the light.

How can we help you?

If you need ISO 27001 and it feels like a mountain with no clear paths to the top, we can help. If you already have a certification that sits in a drawer and gathers dust 50 weeks a year, and then comes out two weeks before a re-audit creating panic and havoc, we can help. You can start by explaining your ambitions and we’ll let you know how long it will take and how much it will cost to get there.

Some clients we are helping:

FromCounsel_

JH Support

Pulsen Omsorg

How we work

We come from your side of the table. We know that compliance work is difficult to prioritise over your “real business”. We understand that, so we will make it as easy as possible. We’ll let you decide how much your team wants to do with our guidance, and how much you’d like us to just make it happen. And you can change your mind as you go along. We know the real world doesn’t wait around for your certification schedule.

We are humble enough to know we don’t always have exactly the answer and so we work with a growing group of experts in their field and are proud to have a nascent advisory board whom we can turn to for sage advice when needed.