Our Vision
We believe every organization, regardless of size, can build a cybersecurity program able to protect and defend against the ever-changing threat landscape.

Who We Are
Mike Ellerhorst is the founder and CEO of NTM Advisory. He embraces disruption, brings calm to chaos, and enjoys delivering transformation programs to solve complex and challenging problems. Mike is a proven leader of diverse international teams successfully delivering to clients primarily in the financial services, healthcare, and retail industries.
Mike has over 15 years of consulting and industry experience – bringing the perspective of both a trusted advisor and a practitioner who has had to make hard decisions and deal with the consequences. Mike built his foundation of expertise with over a decade of experience at PwC across the Cybersecurity and Privacy, IT Infrastructure, Cloud Computing, and Advisory practices. He has designed and run security and privacy programs as a CISO and is an expert at efficiently using resources to pragmatically mitigate IT and business risks. Mike holds the Certified Information Security Manager (CISM) and ITIL Foundations Certification and previously held the AWS Solutions Architect certification.
From Denver area meet ups to national conferences, Mike is an accomplished speaker and enjoys sharing his perspective and experience with the Information Security community.
Mike holds a Bachelor's degree in Computer Science from the University of Notre Dame, and a Global Executive MBA from the Fuqua School of Business at Duke University, including embedded learning and professional experiences on four continents (Shanghai, New Delhi, Santiago, Berlin, and Durham, NC).
Services
Today's technology and business landscape is full of dynamic and complex risks – sometimes feeling like a maze of uncertainty. NTM Advisory enables leaders to understand, communicate and act on cybersecurity risks in a practical and sustainable way.

Risk/Maturity Assessment
We can provide an independent view of how your program measures against your threat landscape and industry frameworks such as NIST CSF, CIS or ISO.

Simulated Incident Response Prep
In one or more facilitated sessions, we help your team practice how they will respond to a cybersecurity incident.

Cyber Health Check
A quick, point-in-time evaluation of your organization's Information Security posture.

Security Program Design
Together, we can design and build a sustainable security program based on your business and available resources.

Compliance Readiness and Enablement
Whether you're preparing for your first SOC2 audit or need help adopting PCI v4.0, we can help. When done right, compliance can be a business enabler.

Fractional Security Leadership
Trust us to operate and enhance your Information Security program to understand your cyber risk and better achieve your business outcomes.
Representative Case Studies

ISO 27001 Maturity Assessment

Security Program Design

SOC 2 Type II Readiness
A subsidiary of a Global Insurance Provider that had experienced a security event and changes in IT leadership sought assistance to baseline the current Information Security capabilities against the ISO 27001/2 framework, establish a target maturity, and develop an 18-month roadmap to close the gap.
A US-based global Financial Services company had recently completed an acquisition of multiple international operating units and needed to rapidly assess their capabilities and integrate them into the Global Information Security program.
A FinTech organization supporting the mortgage lending process sought assistance to evaluate their existing technology and control environment as they prepared for a SOC2 Type II audit. This was driven by double digit revenue growth and the increasing expectations of their customers.

ACHIEVE TOGETHER
Reach out to learn how NTM Advisory can build trust and increase confidence in your business's ability to weather the Cybersecurity storm and allow you to sleep better at night.