About us

Established in 2017 by Jeff, Farah, and Richard, Cybercraft began as a team of three passionate individuals. Today, it has flourished into a vibrant team of nine professionals, each bringing a unique blend of expertise from various fields.

This diversity is our strength, enabling us to provide comprehensive, secure digital solutions tailored to each business's specific needs. Our team, known as 'Cybercrafters', is committed to creating a resilient digital environment for businesses, united by our collective mission to manage and mitigate cyber risk effectively.

Our Journey


Cybercraft was founded in late 2017 by Jeff Herbert and Richard Williams as Lead Consultants to provide specialist cyber risk management services to mid-market businesses.

We introduced cyber risk as a whole-of-business problem, not just a technology issue, and provided holistic risk assessments that related to business risk, brand reputation and impact, rather than just the technical aspect of cyber risk.


In 2018 we were joined by Farah Herbert for market development, building relationships and looking at further opportunities for Cybercraft.

We continued to build our client-base and established relationships with Governance New Zealand and Risk New Zealand as their exclusive cyber risk partner. We launched a privacy consulting service to help meet the growing need for privacy compliance.


In 2019 we commenced R&D of an innovative concept for a product with the capability to automate the cyber risk assessment process at scale. We also added ISO27001 implementation services and web penetration testing to our scope of services, expanding our capabilities and opportunities for growth.

We commenced regular workshops introducing an innovative cyber risk management programme that was very popular and highly regarded.


In 2020, we introduced several exciting new initiatives and new people to Cybercraft, growing the team to 6 people.

We updated our corporate identity to better reflect our target audience, restructured our services into clear practice areas introduced our new Cybercraft Digital practice and expanded Continuous Assurance to include a custom hardware appliance for our service.


In 2021, Cybercraft continued its growth trajectory, expanding our team and client base. We enhanced our REDglass product, incorporating advanced features for a more robust cyber risk assessment process.

Our collaboration with professional bodies like Governance New Zealand and Risk New Zealand was strengthened, solidifying our position as a leading cyber risk partner. We also increased our service portfolio, introducing innovative cyber risk management programs.


In 2022, Cybercraft hit significant milestones. We expanded our team to include two new partners, Paul and Patrick, and initiated an Intern Program for Associate interns from the business sector, fostering fresh talent.
Transforming into a Managed Security Service Provider (MSSP), we established strategic partnerships with industry leaders such as Crowdstrike, Knowbe4, and Runzero. These steps reinforced our commitment to providing comprehensive cyber risk solutions and driving innovation in the cyber risk management space.

Our values

& Simplify

Our strongly innovative culture encourages people to develop novel and practical methods and approaches that improve digital engagement, cyber resilience and cyber risk management.

At All Times

In Cybercraft we believe that it is crucial to operate on an ethical foundation, so with all of our dealings, with clients and partners we stay ethical at all times.

Inspire Disruptive Thinking

We are industry thought leaders that help define the narrative on Business Resilience focused on governance and management, exploring new initiatives to help communicate issues and challenges.

Sustainable Philosophy

Cybercraft believes that it is important for businesses to be sustainable. This is about looking at a long term vision for Cybercraft to assist the economy, environment and society.

In Humanity

We are an inclusive organisation, that offers an equal opportunity to individuals without regard to gender, age, race, or sexual orientation. This gives us a competitive advantage to have diverse thinking and higher innovation within the organisation.

Meet the Team

About Jeff

Jeff works with organisations to establish cyber-risk governance practices and design and deliver cyber risk management programmes to meet risk appetite expectations and regulatory compliance obligations.

For over 20 years he has worked with standards and frameworks that support cyber risk management and cybersecurity controls (ISO 27001, NIST, CIS, NZISM). Services he provides include cyber risk consultancy, board and c-level engagement, impact assessments, security architecture, cyber policy frameworks, gap assessments and fractional Chief Information Security Officer role.

Jeff Herbert

Director Cyber Resilience

About Richard

Working in a wide range of industry sectors and with clients from 10 to 1500 staff I have helped organisations get a holistic view of their cyber risk across the organisation using Cybercraft's Cyber Risk, Cyber Insights and Privacy Risk assessments.

Richard also specialises in customised Cyber Policies like Cybersecurity, Acceptable use, BYOD and Technical policies

Richard Williams

Director Cyber Resilience

About Farah

As CEO and co-founder of Cybercraft, Farah Herbert leverages her background in governance, SaaS platforms, and marketing to aid businesses in navigating cyber risk. She specialises in cyber risk governance, focusing on effective risk management and strong governance to drive Cybercraft's growth.

Despite her non-technical background, Farah effectively collaborates with leadership teams, helping them understand and implement cyber risk strategies, furthering their journey towards comprehensive cyber resilience.Farah Herbert

Farah Herbert

Chief Executive Officer

About Gage

Gage works with organisations of all sizes to adjust and adapt and adopt emerging technologies into the core of their digital strategy.

Gage, alongside his expert team, combines Cybercraft's knowledge of cyber resilience to raise New Zealand's security posture with secure development and innovate emerging technologies (such as Deep-Learning AI) to make Cybercraft your full-service secure digital partner.

Gage is also a registered member of the international organisation, OWASP.

Gage Keenan

Lead Developer

What people say about us

Cybercraft’s knowledge and passion for improving our cyberrisk management were clear from day one; throughout the engagement, they tookthe time to understand our business, work within our budgets and provide theexpert help we need to achieve best practice in our business.

Gilbert McKinnon

Chief Financial Officer, Hunter Retail

Cyber risk management is a must for all businesses.
They help you get started.
Well worth while having a conversation!

James Mann

Business Manager, Energy Solution Providers

Well worth the time.
Great to work with for managing and understanding cyber risk management.

Alix Coutts

Systems Manager, Anthony Harper

With the growing importance of cyber security and the every increasing threat of cyber risks in our present-day time, we (Flume) were eager to work with a company that were not only specialists in cyber security but could help guide us in understanding the importance of cyber resilience and how that needs to be built into your business culture.  
When we met with Cybercraft, we knew they were the team to help us with this because they were both knowledgeable and capable on this area. We decided to engage with their Insight Assessment services which gave us an insight into the areas of our business that were at risk, from an executive level to an operations level. 


Nathan Hauraki, Studio Manager

“We recently engaged in an Incident Response Readiness Audit (IRRA) with Cybercraft and have been thrilled with the results.  As a Healthcare provider we needed to understand our gaps and the team at Cybercraft have been able to provide us with a clear understanding of these.  

Throughout the IRRA they worked with professionalism and expertise and their proactive, friendly approach has given us the confidence that we can ensure our sensitive data and assets are on the way to being better protected.  We would highly recommend Cybercraft to other organizations seeking top-notch cyber security solutions”.

Nicola Mills

General Manager, Sleep & Breathing (NZ) Limited