Security consulting that starts with clarity

Opcode exists because too much cybersecurity consulting is vague, fear-driven, and disconnected from how organisations actually operate.

Our approach

Every engagement starts with understanding the organisation's context: what it does, what it depends on, what regulations apply, and what level of security investment is proportionate to the actual risk.

From there, Opcode delivers clear recommendations and hands-on implementation — not a slide deck and a handshake.

Opcode works primarily with Australian organisations across financial services, government, defence, healthcare, and critical infrastructure.

27+ Years experience
30+ Countries served
6 Industry certifications

Clarity over complexity

Security advice that leadership can act on, not just acknowledge. No jargon-filled reports that gather dust.

Outcomes over deliverables

Measured by what changes, not what gets documented. Every engagement aims for lasting security improvement.

Security as an enabler

Good security enables the business to move faster with confidence, not slower with friction.

Matt Gurr — Principal Consultant and Founder, Opcode

Matt Gurr

Principal Consultant & Founder

Matt brings nearly three decades of cybersecurity leadership, spanning hands-on technical practice through to executive risk advisory. His career has been shaped by helping organisations across regulated and high-stakes industries — financial services, government, defence, healthcare, and critical infrastructure — turn security from a cost centre into a source of operational resilience and commercial advantage.

He has led security functions through periods of rapid growth, regulatory change, and large-scale incident response, working with boards, executives, and technical teams to translate complex risk into decisions the business can act on. That experience underpins how Opcode operates: focused on the outcomes that matter to leadership — reduced risk exposure, faster decision-making, regulatory confidence, and protected revenue — rather than activity for its own sake.

Matt founded Opcode to bring that depth of expertise to organisations of every size, from emerging businesses formalising their first security program to enterprises managing complex, multi-jurisdictional risk. He holds a Master of Information Technology and maintains certifications across executive governance, security architecture, and cloud security.

When an engagement calls for depth beyond a single practitioner, Opcode draws on a vetted network of trusted security professionals with complementary expertise.

LinkedIn →

Certifications & Accreditations

GAICD Graduate, Australian Institute of Company Directors
CISSP Certified Information Systems Security Professional
CISM Certified Information Security Manager
SABSA SCF SABSA Chartered Security Architect
AWS SA AWS Certified Solutions Architect
CCSK Certificate of Cloud Security Knowledge
Frameworks & Standards
NIST CSF ASD Essentials ISO 27001 CIS Controls OWASP

Ready to strengthen your security posture?

Let's talk about what Opcode can do for your organisation. Get in touch for a no-obligation discussion about your security challenges.

Get in Touch View Services