Insider Risk & Personnel Security

Overview

Insider risk is the likelihood of harm or loss to your organisation. Insiders can cause damage to organisations in a variety of ways, including theft of intellectual property, fraud, commercial and state espionage, unauthorised disclosure of sensitive or classified information, and facilitation of unauthorised third-party access. Damage from insider activity – whether intentional, unintentional, self-motivated, or due to ineffectual security policy – can be catastrophic. Personnel security is the implementation of appropriate protective security measures to manage insider risk.

Our significant expertise across U.S. and U.K. critical national infrastructure and government and commercial enterprise is augmented by strength in structural engineering, blast assessments, hostile vehicle mitigation (HVM) and physical and technical security. Our threat, vulnerability and risk assessment (TVRA) processes consider the entire integrated security posture of your organisation: we engage management, engineers and operators to understand its policies, physical systems, infrastructure and personnel security to produce a TVRA or risk-treatment plan tailored to your business needs.

Qualifications

We’ll perform business-focused personnel security risk assessments and audits, benchmarking against standards and best practice. Our risk-reduction strategies and solutions are proportional to your business risk, with a range of options to meet your unique requirements. Our reports are easy to understand and can be presented to boards, insurers or regulators as a demonstration of due diligence, a cost-benefit analysis or a risk-treatment plan.

Our services include:

• Personnel security climate assessment. An expert assessment of insider risk formulated through a review of operating procedures against operational requirements. Considering threat, impact, vulnerability and likelihood, we'll identify personnel security vulnerabilities. The results are fundamental to informing security strategy whilst ensuring the confidentiality, integrity and availability of assets.
• Supply chain assurance. To secure the supply chain by ensuring that suppliers have the appropriate security arrangements in place. Delivered to confirm compliance against contractual and best practice standards, it is achieved by adopting a holistic risk mitigation approach by understanding how the supplier operates and safeguards its information.
• Facility Security Cleared, Industry Personnel Security Assurance and Surreptitious Threat Mitigation Process consultancy services. Expert advice regarding the implementation and operation of facilities required to operate at a government- or other regulator-defined classified level.