The Blog

Axenic joins the Trust Framework Authority as an independent evaluator

We’re pleased to share that Axenic has been accepted onto the Department of Internal Affairs (DIA) Trust Framework Authority (TFA) panels as an independent evaluator for both the security and privacy panels.

This appointment recognises our deep expertise in information security and privacy assurance, and Axenic’s continued contribution to building trusted digital services in Aotearoa. 

Read More

Axenic Lightning Talks Series – March 2025

A few years back, we kicked off our own internal lightning talks—our way of having a good old geek-out over cybersecurity topics that get our Governance, Risk, Assurance, and Compliance brains buzzing. Think of it as a slightly more structured version of those deep and meaningful yarns we used to have around the office coffee machine… before COVID did its thing and made us all experts in online meetings awkwardness instead.

These blogposts are not written by one team member. The content is provided to you by the whole Axenic Team – or whomever attended on the day.

Read More


From iced matcha tea to qualification: The rollercoaster ride to becoming a Qualified Security Assessor (QSA)

Axenic PCI QSA JourneyAlways remember this -> Without ambition, one starts nothing. Without work, one finishes nothing. The prize will not be sent to you. You have to win it – Ralph Waldo Emerson.

If you’re reading this blog, you probably already have some experience with security standards and certifications – maybe you even hold a few yourself. In this blog, I will shed some light on my own journey to gain the QSA qualification and break down the steps I took to make this happen. 

Read More


Stay ahead: Strengthen your business with third-party risk management

Third Party Risk Management

With the fast-paced business style, organisations nowadays heavily rely on third parties such as vendors, suppliers, logistics partners, cloud services providers, etc. These partnerships can offer great benefits but also could expose your organisation to risks. That’s where third-party risk management (TPRM) comes into play. TPRM provides a structured approach to evaluating and mitigating these potential risks.

Ready to take control and protect your business? Let’s dive into the world of TPRM!

Read More