• Aligning IT Strategy with

    Business Strategy

  • IT Infrastructure


  • Project Managers and


IT Strategy

Technical Architecture

CPMC has produced architectures for central banks and Fortune 100 companies in challenging environments.


Like any architectural discipline, what distinguishes the good from the mediocre is attention to detail. Our architects are painstaking: our design documents stand up to very close scrutiny. Our subject-matter experts work closely with our client’s technical teams to ensure that the full stack of technologies is aligned.

Satisfaction Facility

We start at the data centre, ensuring that the facility our clients choose or build is adequate for the downtimes the business considers acceptable.

Comprehensive Planning

We next turn to the network design, making sure that security, bandwidth and redundancy are aligned with business goals and requirements. We are keenly aware that our clients operate in a very tight regulatory environment, and we know which standards will make the regulatory grade.

High Compatibility

Most of our clients use a combination of virtual servers running on an internal cloud, with dedicated physical servers for mission-critical applications. We assess the technologies available and recommend on the best mixture.

Professional Advisory

We advise on appropriate services to support applications. Most of our clients need a range of applications that no single vendor or platform can easily deliver: we help our clients through the selection process, advising on the trade-offs that must be made to deliver a working solution at an economic price.

Transition Plan

Finally, we map our client’s n-tier applications on to the new architecture, ensuring that the transition plan will minimise risk.

  • Our qualified ISO27001 auditors have conducted numerous reviews and audits.

    We ensure that all our architectural designs conform with our clients’ internal security standards, and relevant external standards. We advise on ISO27001 and PCI DSS.

  •  Business Continuity is often seen as a regulatory box to tick – until disaster strikes.

    We follow the methodology recommended by the Business Continuity Institute to help our clients produce a Business Continuity Plan (BCP) that accurately reflects and prioritises the importance of the various business units should a disaster strike.

    We emphasise the human side of the plan: no amount of High Availability clusters or redundant network links will be of avail if there is no one there to use them. We therefore ensure that our BCPs accurately reflect the logistics of getting the right people connected to the right equipment, as well as getting the equipment working.

    We work with our clients to devise test plans and scenarios for the BCP so that, if the day comes, our clients can be sure their business goes on.

  • We enable your business to speak the language of smart contracts.

    We can translate your business ideas into smart, robust designs that are cryptographically secure, and that stand up to rigorous use.

    Smart contracts are an early-stage technology, and the available toolkits are not all they could be. We have conducted workshops in Ethereum to get individuals over the initial learning hump.

    Our applied cryptologist has over twenty years experience in implementing cryptographic solutions for payments systems, and can help you find the optimal technologies for your idea.


IT Service Management

IT Service Management is a great way to lift IT departments out of a reactive mode and into structure. Unfortunately, implementing ITIL is much easier said than done: staff resists, management resists, and users don’t understand what’s wrong with phoning a friend in IT.


Our approach to ITIL is therefore very much hands-on. Our qualified ITIL experts sit next to our clients’ staff to get them into the daily routine of actively running an IT department. We ensure that reports are not merely looked at, but acted upon. We make sure that everything that should be followed up, is.


This transition takes time and patience – and thus commitment. It’s not a road for everyone, but those who take the first step appreciate the destination.

  • A lot of data centre work suffers from a disconnect between the IT and engineering teams. Unlike most, our Uptime Institute Accredited Tier Designer (ATD) has an IT background. This enables a holistic approach as we start with the IT requirements and develop those into the availability and engineering requirements. As a result, solutions developed with our advice do not suffer the over-engineering and related costs, thereby saving significant sums.

    We have been involved in design of several and the review of over a hundred Tier-2, -3 and -4 data centres with loads up to 90kW / rack (yes, 90kW, for High Performance Computing). We maintain a database of data centres in Thailand and the Philippines, with other SE Asian countries to follow.

Our Project Managers have delivered projects from simple data centre moves to US$25M bank transformation projects involving multiple vendors in a programme.

We do not in general manage software development projects. Our focus is on vendor management: we write the bid documents, evaluate the vendors’ bids (based on pre-determined scoring schemes), negotiate the contracts, and ensure that the vendors own project managers are aligned with our own, and with each other.

We do this using PRINCE II, modified as needed to reflect the governance of the project, its size, scope and complexity.

Not all of our projects are on time and on budget (anyone who tells you that they’re always on time and on budget has been given too much time and far too much money), but our projects do always add value to our client’s business. That is what we take pride in.