About OrgSeal

Learn about the experience behind OrgSeal and the operational background that shaped how the platform is built.

OrgSeal was founded by Liviu Dunaev LinkedIn, a cyber security engineer with 25 years of enterprise infrastructure and security experience across Australia and New Zealand — and a deliberate, hands-on specialisation in application control and Essential Eight hardening.

Why OrgSeal exists

Office macros, PowerShell, and unsigned executables remain one of the most common ways malicious code reaches a workstation. The safe answer — block everything that isn't signed by a trusted publisher — works right up until the finance team needs their spreadsheet macro or an engineer needs a deployment script. Then the trade-off begins: allow everything and accept the risk, block everything and break the business, or assess each file by hand and create a queue the security team will never clear.

OrgSeal was built to remove that trade-off. Every file is assessed automatically through a two-stage evaluation — behavioural detonation in an isolated sandbox and static source-level analysis — and only the clean ones are digitally signed. The platform reflects 25 years of disciplined infrastructure engineering and direct, in-the-trenches delivery of application control across Australian government and not-for-profit organisations. It is not a theoretical product. Every workflow it automates is one that has been performed by hand, at scale, in production.

A career built on operational resilience

My career began in the resilience layer of enterprise IT. Through senior roles at EDS, Unisys, and IBM, I supported some of the largest backup and disaster recovery estates in the southern hemisphere — including a 6,500-server IBM TSM environment protecting 5PB of weekly data, and the migration of 5,000+ servers from on-premises to public and private cloud. I led datacenter migration programs across the banking and utilities industries, and delivered backup infrastructure for law enforcement, government, telecommunications, and manufacturing organisations.

That decade-plus in resilience engineering shaped a particular discipline: every control must survive contact with a real production environment, and "it works" is not a finished outcome.

A deliberate move into cyber security

In 2020, I moved fully into cyber security, focusing on the controls that determine whether an organisation can withstand a breach rather than merely detect one. Across consulting engagements spanning federal government, the not-for-profit sector, and technology consulting (auditing a Big Four Australian bank), I have:

  • Designed and deployed application control in enforced mode across Windows estates, achieving Essential Eight Application Control Maturity Level 2 under the ACSC framework.
  • Operationalised the full application-control policy lifecycle — audit-mode baselining, event-driven tuning, trusted publisher and path-based rule design, and controlled transition to enforcement — without disrupting end-user productivity.
  • Delivered enterprise allowlisting using Airlock Digital and Carbon Black, giving me a direct comparative view of how vetting-and-signing workflows perform against commercial alternatives, and where their operational gaps sit.
  • Implemented Microsoft Office macro restriction and user application hardening via Microsoft Intune.
  • Led the strategic migration from CrowdStrike to the Microsoft Defender suite (Defender for Endpoint, Servers, and Identity), delivering substantial licensing savings and unified telemetry.
  • Deployed FortiSIEM and Microsoft Sentinel across hybrid Azure environments.

The recurring theme across every one of those engagements was the same: organisations wanted to keep the macros and scripts their people depend on, without weakening their posture. OrgSeal is the answer to that problem, built as a product.

Based in Melbourne. Built for Australian compliance realities.

OrgSeal is operated from Melbourne, Victoria, with a clear focus on the operational requirements of Australian organisations working toward and sustaining Essential Eight maturity — signing Office macros, scripts, and executables through a fast, auditable vetting workflow.