ASSESS. INVEST. PROTECT.

Navigating Hidden Cyber Risk

Expertise

Third Party Cyber Security (TPCS) are experts in protecting your internal rate of return from hidden cyber risks. We are your cyber growth partners.

We help our clients uncover the hidden cyber risks and associated remediation costs for Mergers and Acquisitions, Non Operated Joint Ventures, Private Capital and Family Offices investments. We ensure that you can invest, partner or acquire, safe in the knowledge that your financial and business interests are protected from cyber risk.

How do we achieve this? Assess. Invest. Protect.


Protect.

Protect your internal rate of return (IRR) 365 days a year from cyber attack and for the duration of your investment. Ensure no costly exit fees.

Invest.

Invest and negotiate with confidence. Knowing that appropriate cyber clauses are in place across Shareholder Agreements and Sales and Purchase Agreements.

Assess.

We carry out rigorous cyber security pre deal due diligence to identify and assess cyber risks in portfolio companies, NOJV operators and acquisitions.

results

Experience is everything.

We work with Private Capital firms to manage cyber risk that could degrade your initial investment, affect your internal rate of return, affect your business interests and make a successful exit costly.

 

$M’s

in Saved Cyber REmediation Costs

100%

Success Rate in identifying unknown cyber Risk

Who we are

Meet the team behind TPCS

Paul Boyce

CISM, ISO 27001 Lead Implementor, EU GCPR P

For the last 10 years Paul has worked extensively in the UK Financial Services market providing cyber security expertise to numerous clients and suppliers on cyber best practice. Paul specialises in third party supplier security assessments and risk.

When not helping clients, Paul enjoys spending time with his family, training in the gym and cooking healthy meals.

Kenny Boyce

CISSP, ISO 27001 Lead Auditor

With over 20 years in the industry Kenny has a wide cyber skill set gained working with some of the UK’s biggest organisations, covering sectors such as Government, Financial Services, Retail, Energy, Oil & Gas and Defence.

When not working you can find Kenny spending time with his family and participating in a variety of pastimes such as cycling and cross country running.

Graham Eida

MIET, CISSP, ISO 27001 Lead Auditor

Graham has over 30 years’ experience in cyber security and assurance. Graham is a leading industry expert in the UK Energy space and has worked across multiple clients. Graham has also provided cyber expertise to a wide range of UK government and commercial customers.

When not working Graham is keen on home improvements and automation using his electronics background. When time permits he is keen to build his own smart home from foundations to roof!

Services

What we offer

Cyber for Private Capital

We offer cyber security pre deal assurance to uncover hidden cyber risks in your target before you investment.

Learn more

Cyber as a Service (CaaS)

Our cyber as a service provides a range of cyber services to protect you and your portfolio companies 365 days a year.

Learn more

vCISO

Our Virtual Chief Information Security Officer service allows our clients to lean on almost 50 years of cyber security expertise, either as an ongoing service or an ad-hoc basis.

Learn more

Personal Cyber Intelligence Report (PCIR)

C-Suite members, Executives and VIP’s are now seen as highly prized cyber targets. Senior leaders in any business hold significant influence and have access to highly confidential business information.

Learn more

Certifications

ISO Certifications

We are currently certified to ISO 27001 (Information Security) and ISO 9001 (Quality).

ISO 9001:2015 Certification Badge
ISO/IEC 27001:2013 Certification Badge

Cyber for New Business

Invest with confidence.

We help our customers maximise their return on investment by uncovering hidden cyber risks in target investments. We ensure remediation costs are identified, correct legal protection is in place and that ongoing cyber protections exist for the lifetime of your investment.


Have a look at just some of our cyber security pre deal activities:

Cyber as a Service

We cover your portfolio companies security needs day by day.

Our Cyber as a Service (CaaS) delivers best in class cyber security for your portfolio companies or NOJV operators. We ensure your financial and business interests are protected through the lifetime of your investment and that strong cyber security controls add to that value.


How do we cover your needs day by day?

Cyber security risk exists across all new business activities.

Unless uncovered and addressed cyber risks can lead to portfolio companies systems being hacked, malicious code spreading across their IT environment, sensitive data being lost or breach of your legal and regulatory duties.
We ensure your safety - day by day.

If you want the best cyber security for your new business, contact us.

vCiso

vCISO - Cyber Security Strategy tailored to your business

This service allows our clients senior management to leverage the many years of CISO experience that exist within TPCS.

Our expertise is gained from working across sectors such as Oil and Gas, Finance, Retail, Energy, HMG Government and more. Our vCISO’s are experts at reviewing and directing cyber security activities across organisations and ensuring that business decisions have cyber security at the very heart of them.

What our vCISO’s cover?

Cyber Security Strategy

Clear and crisp cyber security strategies tailored to our customers business vision.


Cyber Behaviours

Ensuring employees and partners are aware of their cyber accountabilities to protect the business.


Cyber Governance

Clear cyber accountabilities defined and governance processes in place to manage cyber risk.


Third Party Cyber Assurance

Providing expertise to ensure cyber security risks in your supply chaine are identified, assessed and managed.


Cyber Incident Management

Effective identification, containment, recovery and reporting of cyber incidents.


Cyber Risk Management

Ensuring that an effective process exists to identify, assess, manage and report cyber risk.


Digital Landscape Cyber Security

Ensuring your digital landscape is secure by design and capable of supporting your business needs.


Cyber Security Consultancy

A service to react to everyday issues such as changes in cyber regulations or threats.

All organisations are subject to cyber security threats, changes in legal and regulatory positions as well as new and existing audit requirements.

Our vCISO service allows our clients to prepare for the unexpected by providing an external lens to an organisation’s cyber security activities and recommending and directing on the delivery of those changes.

If you want the best cyber security for your business, contact us.

PCIR

Personal Cyber Intelligence Report

C-Suite members, Executives and VIP’s are now seen as highly prized cyber targets. Senior leaders in any business hold significant influence and have access to highly confidential business information. Rather than attacking the businesses they work for, cyber criminals are adapting their tradecraft, targeting instead the individual’s less secure “personal digital presence”. Threat groups will leverage these vectors to pivot onto further business compromise operations. TPCS identify, assess and then help manage those unique cyber risks to protect both the individual and the organisations they represent.

In today's digitally connected world, the need for robust online security and threat mitigation has never been more critical. Online threats are constantly evolving, posing risks to individuals' personal lives, reputations, and even physical well-being. This carries a dormant threat to the business interests of the Client and is a key avenue of exploitation for motivated threat actors.

TPCS approaches this with a comprehensive framework, designed to assess, counter, and protect against these threats based on your unique exposure. The framework assesses the complexity and potential impact of threats, providing a clear understanding of their severity. We employ proactive strategies to mitigate threats effectively, including bespoke active monitoring defences, preventing collapse and exploitation of your digital identity. 

Our threat intelligence services, DETECT, ACTIVE and MONITORING have been carefully developed within the framework, and scale to meet the demands and individual circumstances of our clients. This is more than just risk modelling; it's your digital fortress, your orbiting guardian. With TPCS, you can confidently navigate the online world, knowing that every aspect of your digital life is protected. Your digital world deserves nothing less than total security.

 

Questions + Answers

FAQ

The common questions about cyber security - answered!

Because we’re experts in cyber security, people from all sectors of business ask us questions. We’ve assembled those we get asked most frequently below and answered them. If they don’t cover what you’re looking for, please do not hesitate to get in touch.

 
 
 
  • All organisations carrying out capital investments and mergers and acquisitions need to understand the cyber risk that the deal presents to their interests. Cyber risk can manifest in many forms. Unrecognised exposure can lead to a cyber security incident in the target thereby reducing the value of your investment, or it can lead to cyber risks spreading into your organisation from a recent acquisition. It's key that these risks are understood at the appropriate stage of the deal lifecycle.

  • Here at TPCS we understand that investment opportunities can present themselves quickly, with informed business decisions needed at pace. Our service can be stood up within hours of being notified. This responsiveness allows internal employees involved in cybersecurity BAU activities, to remain focused on protecting the organisation, safe in the knowledge that industry cyber experts are managing new business risks.

  • One of the first and most important activities is to understand the deal being proposed and the implications for our clients. Once we understand the deal, TPCS carry out some of the following activities, OSINT reviews, contractual language reviews, baseline cyber questionnaires, dynamic cyber questions arising from target meetings and workshops, digital profiling of the target, dark web reports, perimeter vulnerability assessments, digital reconnaissance and industry level cyber gap analysis.

  • TPCS are industry leaders in the identification, assessment and management of cyber security risks within M&A activities. This level of expertise has been gained whilst working with one of the world's biggest oil and gas companies where TPCS members of staff were fully embedded into the client to build a world class centre of excellence for cyber security risk management in new business.

  • This service can flex to our client's needs. TPCS can either be leveraged as an additional on demand resource when clients need us, or we can embed staff into our clients on a contract basis. Embedding staff enables us to provide cyber guidance and expertise across all areas of new business as our clients invest, divest, acquire and partner.

 

Contact

Let us secure your business interests.

Any questions or comments? Please use this form and we’ll get back to you.