Cyber security advisory

Stay resilient amidst a rapidly evolving cyber threat landscape. Get support managing the complex cyber risks unique to your organisation.

Light-trails-winding-road

Cyber threats evolve quickly, as new vulnerabilities are discovered and old ones exploited every day. Building resilience to cyber risk has never been more important. S-RM can help you take a proactive approach to understanding and managing your unique set of cyber risks.

S-RM listened to our views and created a programme which matched our needs, rather than applying a one-size-fits-all approach. They were authoritative and responsive.

Global VP for international and regulatory affairs, multinational communications company

Why S-RM?

Top-ranked

Chambers & Partners, Band 2, 2023 Cybersecurity Risk

Compliance support

We help you prepare for real-world threats and comply with international standards

Agile approach

We quickly bring together our best minds to solve complex problems

Frontline experience

Organisations across the world trust our cyber risk expertise

Two-Column_cyber-advisory_understand-risks

Understand your cyber risks

Your cyber risk will be unique to your organisation. We work hard to understand complex connections in risk and reveal how they may affect your business. Our team help you determine your cyber security goals and improve the maturity of your security posture.

  • Expert advice with an in-depth understanding of the cyber threat landscape.
  • Technical risk translated into digestible, actionable information for both technical teams and non-technical decision makers.
  • Robust risk assessment methodology to develop a clear picture of your cyber security maturity across people, processes and technology.

Unlock value

Gain clarity on the long-term investment benefits of improved cyber risk management. We provide recommendations aligned with your goals and budgets while creating a competitive advantage for your business by introducing best-in-class risk management practices.

  • Unlock value through investment in cyber security.
  • Improve cyber risk management to increase affordability of cyber risk insurance.
  • Understand how good cyber risk management can create value through competitive advantage.
Two-Column_cyber-advisory_unlock-value (1)
Case study

Saving $20 million for a global company

The CISO of a global manufacturing company asked us to design and implement a new cyber security programme across several international plants following a period of persistent cyber-attacks. Our support reduced the frequency of attacks by 95% and saved over USD 20 million in costs to third party suppliers.

What makes S-RM stand apart from their competitors is the level of service and ability to make cyber simple!

Partner, European mid-market private equity firm 

Case study

Data privacy certification support

A US tech firm needed to develop their cybersecurity function, achieve ISO 27001 certification and overhaul their approach to data privacy. Our coordination of their data privacy program saved the firm over 40% in external advisory fees.

S-RM listened to our views and created a programme which matched our needs, rather than applying a one-size-fits-all approach.

Global VP, Regulatory Affairs,
Global Telecommunications Company
 

Meet our experts

Our cyber security advisory team brings a breadth of industry and technical expertise to pressing situations, helping organisations reduce the impact of cyber risks and remain resilient.

Katherine Kearns
Katherine Kearns
Head of Proactive Cyber Services, EMEA

Katherine is the Head of Proactive Cyber Services based in Manchester, UK.

Katherine has 15 years of experience in cyber security advisory. As a Head of Proactive Cyber Services at S-RM, Katherine leads on developing the strategy for advisory, offensive security and private equity cyber services, supporting clients on their cyber transformation journeys. 

Prior to joining S-RM Katherine was a Senior Manager in PwC for just short of 4 years, specialising in cyber security advisory across private and public sector clients including cyber transformation, strategy, operating model, cyber risk assessment and management engagements. Katherine is an SME in supply chain security and was leading PwC’s third-party security risk management services helping clients identify critical third parties, assess and manage the risks they pose.  

Before PwC, Katherine was and Executive Principal Consultant at the NCC Group where she worked for 11 years, managing a security audit team and leading on the third-party risk services. Under Katherine’s leadership the audit team conducted PCI Card Production audits globally, comprising of security assessments of payment cards production facilities against the security standards of multiple payment schemes. 

Katherine is CISSP (Certified Information Systems Security Professional) and CCSP (Certified Cloud Security Professional), ISO27001 Lead Auditor and previously PCI QSA.

Paul Caron
Paul Caron
Head of Cyber Security, Americas

Paul is S-RM’s Head of Cyber Security, Americas. Paul has over 20 years of experience spanning both the private and government sectors in roles across leadership, military intelligence and counterterrorism, and cyber security leadership & engagement delivery. Before joining S-RM, he was the Managing Director of Incident Response for a global consulting firm. In this role, he used his experience to help clients who were experiencing complex ransomware attacks.

After a career in the U.S. Army, where he was a subject matter specialist in various facets of the Intelligence and Special Operations fields, Paul joined PwC. At PwC, he was an engagement manager and focused on cyber security strategic transformation projects. He has significant experience advising Fortune 100 clients through proactive security transformation efforts and post-breach remediation activities. He has a strong track record of partnering with senior security leaders to mature their cyber security programs on their strategic journeys.

Paul holds an MBA from Norwich University. He was in the first graduating class of the Norwich University Strategic Studies and Defence Analysis program. He is also the co-author of “Security Supervision and Management: Theory and Practice of Asset Protection.”

Mike Groves
Mike Groves
Head of Cyber Advisory, UK

Mike leads S-RM’s Cyber Advisory practice in the UK and specialises in the delivery of strategic governance and cyber risk management services, overseeing engagements with clients from a diverse range of sectors to make their organizations more resilient to cyber security risks.

Mike joined S-RM’s Risk Consulting Team in 2015 as a corporate security operations manager focusing on the provision of terrorism and political violence response services. He subsequently led the development of S-RM’s crisis preparedness functions for corporate clients from a range of sectors and developed specialisms in the design and delivery of emergency management training. In 2018 Mike was seconded to Cape Town as S-RM’s Head of South Africa, taking responsibility for the company’s staff and business activities in sub-Saharan Africa. He returned to the UK to head S-RM’s Cyber Advisory function in 2020.

Before joining S-RM, Mike spent five years in the British Army, leaving at the rank of captain. Mike holds an honours degree in History and Politics from the University of Exeter and is SANS GSEC certified.

Lenoy Barkai
Lenoy Barkai
Director, Cyber Security

Lenoy is a Director in S-RM’s cyber security division. She has over 10 years’ experience spanning security risk management and strategic consulting. Since joining S-RM in 2018, Lenoy has supported clients working through complex cyber and physical security challenges, and has led projects spanning the financial services and insurance, energy, manufacturing and FMCG sectors, among others.

Prior to joining S-RM, she worked as a portfolio manager for a global asset management firm. She is a CFA Charterholder and has an MA in International Relations from King’s College London.

Michael Clark
Michael Clark
Head of Cyber Advisory, Americas

Michael has over 15 years of experience working in “Big 4” accounting firms and reputable global consulting firms operationalizing IT Risk, Cyber Supply Chain Risk, and Governance, Risk, and Compliance (GRC) strategies and programs across multiple industries, including Financial Services, Pharma, Tech, Manufacturing, Retail, Energy, and Rail Transportation.

Specifically, Michael’s experience includes leading and supporting largescale global transformations, strategy development, maturity/current state assessments against industry-leading frameworks, program design and implementation, project management, change management, GRC technology selection and implementation, leading and conducting IT and supply chain risk audits, and various other related strategic activities in support of assisting clients to solve complex problems with pragmatic solutions. 

Prior to S-RM, Michael worked at PwC as a Senior Manager first within the Performance, Governance, Risk, & Compliance team and later within the Cyber, Risk and Regulations practice as part of the Third-Party Risk Management team. Michael also worked at EY in the IT Risk Assurance practice as a Manager focused on IT audits (including SOX audits), vendor risk control assessments, and SOC reports. Prior to starting his career in the civilian sector, Michael served in the US Army as a commissioned officer where he honed his leadership and problem-solving skills leading soldiers in combat missions while deployed.

Gideon Teerenstra
Gideon Teerenstra
Head of Cyber Advisory, Benelux

Gideon Teerenstra is Head of Cyber Advisory Benelux for S-RM’s Cyber practice. With over 10 years in the industry, Gideon has worked closely with our clients to develop tailored solutions that map their precise requirements for cyber strategy and implementation based on their locations, exposure, and objectives. Prior to joining S-RM, he worked for the Cyber Strategy team of Deloitte Netherlands and has been the CISO of a university medical centre.

Gideon holds a bachelor’s degree in Industrial Engineering & Management, and a master’s degree (honours) in Business Information Technology, specialising in Innovation & Management.

Katherine Kearns
Katherine Kearns

Head of Proactive Cyber Services, EMEA

Paul Caron
Paul Caron

Head of Cyber Security, Americas

Mike Groves
Mike Groves

Head of Cyber Advisory, UK

Lenoy Barkai
Lenoy Barkai

Director, Cyber Security

Michael Clark
Michael Clark

Head of Cyber Advisory, Americas

Gideon Teerenstra
Gideon Teerenstra

Head of Cyber Advisory, Benelux

talk to us today

Leading the way in cyber security advisory services

Our team are renowned for providing in-depth, supportive, and trusted advice to global businesses. Discover how they can help yours remain risk resilient.

CTA_cyber-advisory