Services

"Quantum-ready" means two things at the same time. Your data and systems are defended against the coming break in public-key encryption, and you are prepared to benefit where quantum computing realistically creates an edge. I help you get there with a clear, executive-level path and the technical depth to back it up.

Quantum risk & governance

The threat is concrete but it is not evenly distributed. A future fault-tolerant quantum computer running Shor's algorithm breaks RSA and elliptic-curve cryptography, the asymmetric schemes behind TLS, VPNs, code signing and most digital signatures. The timeline is uncertain; the exposure for long-lived secrets is not, because of "harvest now, decrypt later": data exfiltrated today can be stored and decrypted once the hardware arrives.

I turn that into governance leadership can own: which secrets must stay confidential past the plausible arrival of cryptographically relevant quantum computing, what regulation requires (NIS2, GDPR, sector rules), and what a defensible plan costs.

Quantum-safe migration

A fixed-scope path from exposure to roadmap:

  1. Cryptographic inventory. Find where and how you rely on public-key cryptography, across applications, infrastructure, suppliers and embedded systems. Most organisations do not know.
  2. Risk rating. Map long-lived sensitive data against harvest-now, decrypt-later risk and regulatory drivers.
  3. Migration to PQC. Sequence the move to the NIST standards (ML-KEM for key establishment, ML-DSA and SLH-DSA for signatures) with crypto-agility built in, so the next algorithm change is a configuration, not a project.
  4. Owners and milestones. A prioritised, costed plan you can take to the board.

A note on what this is: post-quantum cryptography runs on classical hardware. It is the defensive half of "quantum-ready," and it is urgent precisely because the offensive half is still years away.

Quantum opportunity & use cases

The honest version. Today's quantum computers are in the NISQ era: tens to a few thousand noisy qubits, no full error correction, limited circuit depth. Broad, proven business advantage does not exist yet. But specific candidate use cases are worth understanding now, because positioning, data and talent take time to build.

I help you assess where quantum computing could plausibly matter for your business (combinatorial optimisation, materials and chemistry simulation, certain machine-learning and risk problems), separate the demonstrable from the aspirational, and decide whether a watching brief, a pilot, or nothing is the right move this year.

Ways to engage

  • Board briefing

    A single plain-language session to align leadership and decide what, if anything, to do next.

  • Readiness assessment

    A fixed-scope exposure assessment and roadmap you can take to the board.

  • Fractional advisor

    An ongoing, part-time quantum and security advisor as you execute.

Independent and vendor-neutral: I do not sell hardware, software or migrations, so the plan is built around your risk and your business. Book a conversation →