Practical Risk Management
We boldly brand ourselves as providing practical security and operational risk strategies that, based on experience, will be both effective and cost efficient. Established by Dr Paul Dorey, an information risk & security professional with over 20 years personal experience, at the Chief Information Security or Risk Officer level in major companies; CSO Confidential leverages the experience of senior security professionals who have been decision makers within their organisations.
Good security need not cost the earth. The security problem is about balancing investment to risk, and making sure that the right security solutions are put in the right place to give sustained and adequate protection.
Security in organisations is often about interfaces; bringing together views of risk management, physical and information security, Compliance and corporate governance. Good security and risk management also recognises the interfaces and dependencies with other organisations, suppliers and government agencies. This is particuarly true in those companies that play a part in operating the critical infrastructure within countries (CNI). We have direct experience in developing security strategies that meet these goals.
What do we do?
CSO confidential is about getting access to hard-to-find experienced professionals who can develop security and risk management strategies for government agencies, service & technology suppliers and end-user companies. Typical assignments have also included the assessment and development of security capability, improving risk management performance and developing security service propositions for suppliers.
Research
Part of the mission of CSO Confidential is to progress the discipline of information security and risk management through conducting research. Some of this is specific to clients, other research is through open funding and may be made available through this site. One particular interest is in the security of embedded systems, such as process plant and Operational technology. If you wish to know more about our programme, please email