Security Risk Management
TVRA/CPTED assessments, access control audits, perimeter & entry hardening, SOP/post-order reviews, and insider-threat mitigation for facilities.
Strategic, compliance-ready advisory across physical security, threat management, continuity & resilience, geopolitical risk, GRC, cybersecurity, AI governance, and legal risk.
TVRA/CPTED assessments, access control audits, perimeter & entry hardening, SOP/post-order reviews, and insider-threat mitigation for facilities.
Program design for threat identification, prevention, and response—policy, escalation pathways, tabletops/full-scale exercises, and LE/MH coordination.
COOP/BCP strategy, emergency response planning, exercises & after-action reviews, and recovery roadmaps aligned to standards.
Country/region risk, travel security frameworks, event & executive itinerary risk, and continuity considerations for overseas operations.
Converged governance that aligns physical, operational, and cyber risk—ERM, BC/DR compliance, third-party risk, cyber-physical controls, and regulatory alignment.
AI-specific contract language development addressing liability, indemnification, model transparency, audit rights, data usage and retention, performance warranties, and vendor accountability. Regulatory compliance analysis for emerging technology adoption. Legal advisory review of high-risk AI vendor agreements. Internal contracting guidance for procurement teams. Delivered in collaboration with Freedom Law | North Carolina (freedomlawnc.com).
AI risk classification and governance framework design aligned to ISO 42001 and NIST AI Risk Management Framework. Cybersecurity program evaluation against ISO 27001, NIST CSF 2.0, NIST 800-53, NIST 800-171, NERC-CIP, and CMMC. Data governance, privacy, and information security program development. Security investment business case development. Enterprise security program assessment and policy framework design.
Book a consultation and we’ll scope a right-sized engagement in one call.
Request a Consultation