Offensive security

Understand your vulnerability to real-world threats with our tailored security consultancy services.

Offensive-security-hero-2(1)-(1) (1)

Every business is as unique as the threats it faces. That's why we tailor our services to your needs. We focus our efforts on the threats that can impact your specific industry, technology, and challenges – providing a unique, bespoke, and cutting-edge perspective of offensive security. 

The S-RM report is one of the best I've ever seen: it's easy to read for both technical and non-technical audiences.

Investment firm

Why S-RM?

Consulting excellence

We put our consultancy services first, providing actionable insights you can use.

Threat intelligence

Our incident response team manage hundreds of incidents a year. We draw on their experience and insights to deliver realistic attack scenarios.

Understanding complexity

We address underlying security concerns and don’t reduce our services to off-the-shelf solutions.

CREST approved

Our services are approved by CREST, the international not-for-profit membership body representing the global cyber security industry.
Office-buiding-at-night

Simulating real-world threats 

Obtain straightforward and actionable insight and intelligence on the unique set of threats your organisation faces. We put equal focus on presenting our findings in a clear and user-friendly format, ensuring that all findings and reports are moved into an actionable workstream, as well as testing your response capabilities and providing proactive advice to remediate the risks we’ve identified.

  • Expert red and purple teaming to identify threats and defend against them.
  • Our team sets objectives, conduct attack simulations, and communicate findings and advice for the people, processes and technology within your organisation.  
  • Technical excellence enables our consultants to use elements of physical and digital SE, adversary tools and advanced hacking techniques to enact all stages of an attack.

Threat intelligence excellence

We work with our dedicated IR team who have a wide international and regional coverage to understand the constantly evolving threat landscape and make sure our scenarios are realistic and proportionate to your business risks. 

  • Access to threat intelligence specialists that map the threat landscape.
  • We collaborate with your team to devise the attack scenario(s) as well as establish clear objectives and rules of engagement.
  • We communicate clearly throughout the engagement to make sure we spend our time efficiently.
top-down-city-view
Case studies

Preventing a data breach

A software development company chose S-RM to conduct security testing on a suite of connected applications and services. We found critical vulnerabilities within multiple systems, setting the company on the path towards a largescale data breach. Through timely and efficient remediation in collaboration with the client, a severe security incident was avoided.

...they have the best technical resources I have ever worked with: efficient, meticulous, patient, accommodating.

Managed services provider

Case studies

Reducing the cost of incidents

A global infrastructure company asked S-RM to conduct a comprehensive test of its physical and cyber security across five offices on three continents. The findings informed an overhaul of the link between their physical and cyber security globally and reduced the annual cost of security incidents by over 50%.

Crest-approved-offensive-security

Case studies

Conducting an assumed breach scenario

The S-RM team conducted a scenario to test a software provider's resilience to ransomware attacks as well as its ability to detect and respond to suspicious activity on its internal network.

...they have the best technical resources I have ever worked with: efficient, meticulous, patient, accommodating.

Managed services provider

Case studies

Assessing critical software security

A regulated financial services company engaged S-RM to test their new investment management app prior to launch. Our offensive security team found a way to purchase underlying investments through the app without being authenticated. The client was able to remediate the vulnerability and prevent potentially severe financial and reputational losses.

Crest-approved-offensive-security

Our experts

With proactive and ongoing solutions for testing, our threat intelligence team for offensive security provide an unparalleled level of service, with quick and competitive turnaround times.  

Jill Ferron
Jill Ferron

Head of Offensive Security

Jill Ferron
Jill Ferron
Head of Offensive Security

Jill Ferron is an Associate Director within S-RM’s Cyber Business Unit, leading the Offensive Security practice area. Jill is responsible for overseeing the growth of the practice, developing services and products, and managing the delivery of Offensive Security work to the highest standard for our clients.

Jill joined S-RM in 2019 as a Senior Associate within the Cyber team, where she focussed on delivering complex and bespoke Offensive Security engagements and developing the team’s capabilities. She also worked within the Incident Response team where she helped clients respond and recover from cyber incidents. In February 2021, Jill took up the leadership position of the Offensive Security team and has since been driving the expansion of the team and its capabilities.

Prior to joining S-RM, Jill worked as a penetration tester and a web developer. She holds a MSc in General Engineering as well as the OSCP and OSWE.

Ted Cowell
Ted Cowell

Head of Cyber Security, UK

Ted Cowell
Ted Cowell
Head of Cyber Security, UK

Ted is a Director in S-RM’s Cyber Security business. Prior to joining the cyber team in 2021, he oversaw business development for S-RM’s Corporate Intelligence business after running CI’s US operations for 3 years, when he was based in our New York office. He joined S-RM in 2012.

Before S-RM, Ted worked in communications and advertising. He speaks Russian, and has a BA in Modern Languages from the University of Cambridge.

Ted is based in S-RM’s London office.

Talk to us today

Secure your business against real-world cyber threats

S-RM responds to hundreds of cyber incidents a year. Our team can assist you with the sharpest thinking for offensive security – so your business is prepared.

Speak to our experts
Offensive security CTA (1)

Related content

Cyber Campaign_Sharepoint-min
Report
Cyber Security Insights Report 2022
Read now
AI and the cyber threat landscape: how worried should you be?
Insight
AI and the cyber threat landscape: how worried should you be?
Read now
Placeholder thumbnail
Podcast
How to tackle shortages in cybersecurity skills and talent
Read now
Weekly
Cyber Intelligence Briefing

Expert analysis of the top cyber security news stories each week.

Read now