An online service for the self-employed & small teams that just want to ensure they’re not an easy target.

Without Insanity

Independent security assurance and oversight to
prove that you are taking reasonable steps
to manage security risks and
to align to regulatory expectations.




Demonstrate that you are taking reasonable steps.

Sam Glynn

I’m Sam Glynn, founder of Code in Motion.

Code in Motion provides independent information security assurance and oversight services to help you:

  • Define what ‘reasonable and appropriate’ security looks like.
  • Assess current security controls to ensure they are effective at addressing the key risks.
  • Identify pragmatic improvements to ensure your security posture is reasonable and appropriate.
  • Work with you and your third parties to implement the necessary improvements. 
  • Oversee and assess your third parties and IT service providers on a regular basis, to ensure they do not become your weak link.

We ensure you can demonstrate that you are taking reasonable steps to manage the risks and to align to regulatory expectations.

Are we the right solution for you?

When I say ‘we’, I usually mean ‘me’. Where I need specific skills, I involve my grey-haired (or no-haired) partners. But, in most cases, ‘we’ is ‘me’. 

Code in Motion is a good fit when:

  • The larger consultancy firms are too big, your in-house teams are inexperienced, and you’re not sure your IT service providers are the right people for this.
  • You want pragmatism, not perfection. 
  • You want to focus on what is ‘reasonable’ and ‘appropriate’, but you would also like to consider if or how you could align more closely to an internationally-recognised standard like ISO27001 or NIST CSF. 
  • And if you have decided that you want to get ISO27001-certified, you want someone who can guide you through the process and who can provide templates to get you there faster.

You need to be able to demonstrate that you are taking reasonable steps to cover your responsibilities.

We ensure you do not spend too much of their time, money or sanity getting this right. 

Here’s what our clients say.

During my time as CEO at Ark Life Assurance, we engaged Sam to help us align our IT and cyber security controls to regulatory expectations. Sam consistently demonstrated deep and wide technical skills, but more importantly, exceptional interpersonal skills.

He had an amazing ability to communicate in technical language with external IT providers and intra-group teams, while also always speaking in plain English to the management team. Sam was also excellent at bridging the gap between first line and second line Risk & Compliance teams, ensuring everyone’s concerns were understood while also ensuring we focused on what was reasonable rather than perfect. This is a rare skill.

Beyond his professional expertise, Sam was always pragmatic, and on more than one occasion helped us regain momentum by helping us to identify the ‘next best action’. This not only made him a valuable asset to our team but also a pleasure to work alongside. I wholeheartedly recommend Sam. He is not only skilled and dedicated but also a person who brings out the best in those around him.

Sam is really easy to work with. He is highly organised with good clear communication. He always uses plain English, and avoids IT-speak!

The structure he brought to the process made it much easier for us to go through this – It brought real clarity to our current situation and the steps required to get to where we want to be.

Sam’s pragmatism is also very refreshing – Too many IT / Cyber Consultants that I have encountered in the past just pushed the party line and did not consider the audience or organisational situation that they were dealing with. It is great that Sam was always on our wavelength in terms of identifying what is practical/possible, given the size and capability of our organisation and the needs of our clients.

Rebecca McGee, Head of IT, LIA

Xcentuate partners with customers in the Financial Services, Agri, Pharma and Public sectors in EMEA and Asia-Pacific to transform their business operations. We know it is critical to get cyber security right so we can protect our customers and our business. We asked Sam to guide us.

From Day 1, I knew we had made the right decision. Step-by-step and always through plain English, Code in Motion showed us how we could get from where we were to where we needed to be. The recommendations were always pragmatic and well-grounded. Every action was understandable,  achievable, and tied to a clear security benefit.

If you are confused about what appropriate security looks like, what’s important versus what’s just noise, I highly recommend that you engage Code in Motion to define a clear path for your organisation.

IT isn’t our forte so we needed someone in our corner explaining in layman’s terms our current set-up, what needs to be done and how best to do it.

Code in Motion broke it down into a series of manageable steps and they were always willing to work as a liaison between our service provider. They translated IT language into language we could understand. The structure of the recommendations report also ensured we were never overwhelmed by the task at hand.

We would not have progressed to the point where we are without Code in Motion – end of story. Because of their help, we can now respond to the Central Bank’s Risk Evaluation Questionnaire with a lot more confidence.

Marie Ainsworth, CEO, Mount Street Group
Sam is the only IT person I know who doesn’t talk out of his a**. He speaks like people speak!
Identity Protected!, Operations Manager of Regulated Financial Services Firm

The First Step

Have a quick conversation with me, Sam Glynn.

I’m happy to give you 2 or 3 ideas to help you right now, whether we decide there’s a next step or not.

Book a time that suits you below. You will receive a meeting invite confirming the date/time.

(PS The invite will include a Microsoft Teams link but if you’d prefer to talk by phone, just let me know your phone number and I will call you at the scheduled time.)