My Publications
This page brings together a selection of my published work, covering core areas of cybersecurity, disaster recovery, and IT risk management. Each publication reflects the practical approaches I’ve developed through consultancy and the structured thinking shaped by academic research.
Securing the Cyber Realm
Securing the Cyber Realm: A Comprehensive Guide to Cybersecurity Strategies and Practices
In an increasingly interconnected world, cybersecurity is foundational to operational integrity and stakeholder trust. This book provides a thorough examination of cybersecurity practice, beginning with a historical overview and evolving into advanced topics including risk management, threat mitigation, incident response, technical controls, cloud and IoT security, and identity management.
It also covers disaster recovery, compliance, secure data lifecycle management, and emergent trends such as AI, Zero Trust, and Blockchain. Designed as both a strategic guide and operational reference, this volume is supported by templates, best practices, and a comprehensive bibliography.
An IT Manager’s Guide to Disaster Recovery
An IT Manager’s Guide to Disaster Recovery: A Layered Approach
This guide presents a layered disaster recovery framework that aligns recovery efforts with organisational infrastructure and business priorities. It covers key areas including governance, resilience planning, backup strategies, application restoration, dependency mapping, and coordinated team recovery.
Intended for IT managers, infrastructure leads, and business continuity professionals, the book combines strategic planning tools with practical implementation guidance to support regulatory compliance and operational readiness.
Academic Publications
A Layered Framework for System Dependency Mapping in Disaster Recovery and Business Continuity
Jon Pertwee, Tiangxiang Dr. Lu – Published in Cureus
This peer-reviewed paper introduces a structured framework for mapping IT system dependencies in disaster recovery and business continuity planning. The proposed model, developed during consultancy with a large international NGO, addresses a common gap in standards such as ISO 22301 and NIST SP 800-34 by making dependency mapping a core planning activity.
The ten-layer model enhances recovery sequencing, team accountability, and the identification of cascading risks. It has been positively evaluated for clarity and cross-disciplinary application, with further research recommended to validate broader applicability.