JAKE ROGERS
HomeAdvisoryHow I WorkTrack RecordPrivate ClientCoachingWritingContact
TRACK RECORD

Results Over Rhetoric

I'm brought in when things matter and expectations are high.

This page is not a résumé. It's a record of outcomes delivered under pressure - across startups, regulated crypto firms, and board-level environments.

Selected Organisations

Experience across global organisations operating under real regulatory, operational, and reputational pressure.

Amnesty International logo
Copper logo
Qredo logo
Asset Reality logo
M2 logo
// Featured Engagement

Scaling Security From Founding Team to Unicorn

Context

Early-stage crypto custody firm operating in a highly regulated, high-risk environment. Rapid growth, institutional clients, and intense regulatory scrutiny across multiple jurisdictions.

My Role

Founding security leader and Chief Information Security Officer. First senior security hire, responsible for building security, risk, IT, and governance capabilities from the ground up.

What Changed

  • Designed and implemented the company's core security and enterprise risk framework
  • Built security, risk, and governance functions from first hire to multi-discipline teams
  • Led direct engagement with regulators across the UK, Europe, US, Switzerland, and Singapore
  • Achieved ISO 27001 certification and initiated SOC 2 readiness
  • Presented and defended security posture through multiple institutional funding rounds
  • Established internal security capabilities trusted by regulators and law enforcement

Outcome

  • Company scaled from early-stage startup to $1.6B+ valuation
  • Security became an enabler for institutional trust and revenue growth
  • Boards and investors had clear, defensible visibility into cyber and operational risk

This is the playbook I now bring to other companies - without them having to learn the hard way.

Case // 02

Interim CISO for Regulated Crypto & Asset Recovery Firm

Context

Fast-growing crypto and digital asset recovery firm operating across multiple jurisdictions. Significant regulatory commitments (SOC 2, ISO 27001, FCA, EU regulators) following a breakdown in prior security and IT leadership.

What Was Missing

  • No effective security leadership or governance
  • Fragmented IT and security controls
  • High regulatory and commercial exposure
  • Immediate delivery pressure with no established foundations

What Changed

  • Took over as Interim CISO to stabilise security and IT operations
  • Built foundational governance, security, and technical controls from scratch
  • Implemented zero trust principles, endpoint protection, EDR, and identity controls
  • Embedded security into engineering and operations via a Security Champions model
  • Led direct engagement with UK, EU, and offshore regulators
  • Prepared the organisation for ongoing SOC 2 and ISO 27001 obligations

Business Impact

  • Restored regulatory confidence
  • Reduced operational and compliance risk materially within months
  • Created a credible, defensible security posture under active scrutiny
Case // 03

Post-Incident Stabilisation for Crypto Asset Manager (ADGM)

Context

Crypto-native firm operating under Abu Dhabi Global Market regulation following a significant security incident and strategic business pivot.

What Was Missing

  • Enterprise-grade governance and audit capability
  • Formalised key management and custodial controls
  • Clear security ownership during organisational change
  • Alignment between crypto-native systems and institutional expectations

What Changed

  • Rebuilt the security organisation from the ground up
  • Designed governance and audit frameworks for key management, custody, and third parties
  • Embedded DevSecOps and secure infrastructure-as-code across cloud and on-chain systems
  • Led security through a strategic pivot from exchange to asset management model
  • Acted as primary interface with regulators, board, and investors

Business Impact

  • Stabilised the firm following a major incident
  • Enabled continued operation under ADGM regulatory oversight
  • Re-established confidence with leadership, regulators, and stakeholders
Case // 04

Board-Level Security Advisory

Context

Board advisory engagement where security reporting had become overly technical, fragmented, and ineffective at driving decisions.

What Was Missing

  • Clear linkage between cyber risk and business objectives
  • Executive-level framing of trade-offs and priorities
  • Board confidence in security investment decisions

What Changed

  • Reframed security reporting around business risk and impact
  • Introduced a decision-oriented risk model aligned to fiduciary responsibility
  • Simplified communication without diluting accountability

Business Impact

  • Board alignment on security priorities
  • Approval of significant, multi-year security investment
  • Security repositioned as a business enabler rather than a cost centre

Operating Across Dubai & London

I split my time between Dubai and London, working with companies operating across the UK, Europe, MENA, and globally.

That means practical experience with:

  • UK and EU regulatory environments
  • Middle East regulatory frameworks
  • Cross-border risk, compliance, and governance
  • Globally distributed teams and infrastructure

For boards and founders operating internationally, this matters.

If you're facing regulatory pressure, rapid growth, or decisions with real downside - this is the work I do.