Straightforward and Practical Security Consulting

 We have extensive experience assuring field-deployed operational technology in the maritime and aviation environments. 

 We bring hands-on experience aligning with DefStan 05-138/05-139 (Secure by Design), ISN 2023-09, and operating within the NCSC’s Cyber Assessment Framework (CAF) 

 We tailor and implement industry-recognised frameworks to meet the specific needs of each organisation, including Cyber Essentials, NIST Cybersecurity Framework (CSF), ISO27001, OCTAVE FORTE, and the ISF Standard of Good Practice. 

 We’re experts in every aspect of cyber risk management, from assessment and analysis to reporting. Using both qualitative frameworks (ISO27005, ISF IRAM2, CIS RAM, OCTAVE ALLEGRO, NIST RMF) and quantitative methods like FAIR, we deliver solutions tailored to each organisation and audience. 

 We’re qualified and experienced in all aspects of audit and compliance, from addressing findings from technical security assessments and penetration tests to ISO27001 audits, PCI DSS assurance, Cyber Essentials and NCSC CAF assessments, and comprehensive information security audits and gap analyses. 

 We are passionate about teaching, whether through one-off sessions on specific topics or complete, tailored training courses. Our extensive experience spans all ages and abilities, from cyber safety lessons for junior school children to training company employees, security teams, and top management.