Who we are and where we came from

Security Risk Management Ltd. (SRM) was founded in 2002 in order to provide expert risk assurance and mitigation services. Established by security professionals formerly within the private sector, the Police Service and other government agencies, we have extensive experience providing a comprehensive security service encompassing people, processes, technology, and risk management.

Download our brochure (PDF 5.2 mb)>

Our clients range from large corporate institutions to small independent businesses and the public sector. We specialise in information security (policies, procedures and implementation), compliance management solutions (such as PCI DSS, ISO27001 and N3), business continuity and operational risk.

SRM also provides highly regarded expert computer forensic investigation services and unimpeachable expert witness testimony to Police forces, the legal sector and corporates across the country.

SRM also operates the only UKAS BS7858 (NQA3000) accredited personnel vetting scheme through its security screening division staffvetting.com.

We are experts at what we do, and recognised and accredited for it.

QSA - We are a fully Qualified Security Assessor for PCI DSS and can conduct a full audit on your PCI DSS project. Find out more about our PCI DSS service and see how we can assist your compliance project, no matter what stage you're at be it analysis, remediation, auditing, accreditation or ongoing maintenance, we have a solution.

CLAS - We are CESG (CLAS) Advisors, our particular specialism being information security. CLAS is the CESG Listed Adviser Scheme - a partnership linking the unique information assurance knowledge of CESG with the expertise and resources of the private sector.

ISO 9001:2000 - We are accredited to this international standard, recognised worldwide as the measure of quality of service within an organisation and its commitment to continually improving upon their level of service. This is your guarantee that we meet the tendering standard.

BS7858 - NQA3000 Certification - available through SRM's security screening division, staffvettting.com, we are the only company (worldwide) to hold the latest industry seal, which ensures the British Standard for screening and background checks have been achieved. We are also UKAS accredited.

Certified Ethical Hackers - Our "ethical hackers" are certified and able to conduct legal penetration tests in order to test, identify and assess security weaknesses within IT systems. The Certified Ethical Hacker (CEH) is a professional certification provided by the International Council of E-Commerce Consultants (EC-Council).

RSA partner - We are an RSA SecurID Access Level Partner. RSA's technology solutions enable customers to put their business critical information into the hands of the people who need it (whether that be employees, contractors or clients) while protecting that information against unauthorized access.

Check Point partner - As an authorised bronze partner we deliver end-users with any combination of procurement, installation, and technical expertise. For example, we would implement Check Point firewall solutions where a client needs to improve their remote-access security.

Business Continuity Institute - we are a member of the Business Continuity Institute - "professional membership of the BCI provides internationally recognised status as this valued certification demonstrates the members' competence to carry out business continuity management (BCM) to a consistent high standard."

IPSA - We are a corporate member of the International Professional Security Association. This association has achieved worldwide recognition within the security industry for its ability to provide professional organisations with achievable standards for full management of their security operations.