Information security brings together many different disciplines including IT, physical security and employee vetting. Although information security is often synonymous with IT security, the general perception is that information security is all about protecting organisations from an external hacker attack.  While this is clearly important, true information security also addresses the risks posed by internal parties (employees, contractors, consultants, cleaners etc.) taking or passing company and client information out of the organisation.

Undertaking a review raises the awareness of information security and provides feedback for management on the culture of the organisation. Control Risks can provide a policy and accompanying guidelines to help the client to reconcile the different views and needs of various parts of its organisation.

The objective for any organisation must be to provide security that is essential not just desirable, through a comprehensive audit of both physical and wider risks Control Risks can recommend a strategy that provides continuing help to protect your company's reputation, legal, regulatory, health and safety obligations and business performance.

• Security audits
• Physical penetration testing
• IT Penetration testing
• IT Security
• Policy and procedure review
• Information security consultancy
• Leak investigations
• Technical surveillance countermeasures
• Business continuity services
• Security engineering
• Pre-employment screening
• Due diligence
• Brand protection / anti-counterfeiting consultancy