lighthouse banner


An externalised cyber security assurance service for small and mid-size businesses, their management and their investors


Our Cyber Security Expert Service helps small and mid-size businesses, NPOs and other institutions, their management and their investors understand, improve and manage their full Security and Privacy posture through an externalised, subscription-based assurance service provided on-site or off-site based on their needs.

We enable small and mid-size organisations to see the bigger picture around Security and Privacy, focus resources where most needed, find quick wins and drive action.

cyber security assurance service

Through the combination of an initial assessment of the organisation’s posture, the definition of an action plan and ongoing support to drive progress and develop skills, we give management and investors assurance that Security and Privacy are handled adequately across the business, and that improvement programmes remain on track.

cyber security assurance service details

All with the flexibility of an annual subscription and monthly payments + the ability to navigate up or down our Service Levels depending on your circumstances.

Clients also get access to our network of “best-of-breed” experts who can act as a “first-port-of-call” should something go wrong, and can also provide additional services if required, for example around the architecture of security solutions, the selection of technology partners or the performance of intrusion tests.

Overall, we enable small and mid-size organisations to demonstrate good governance around security and privacy, something which is often key to unlocking pay-outs with cyber insurance firms in case of a breach.

Feel free to contact us to know more

This part of our practice is driven by our Head of Technical Services Steve Lamb


Steve Lamb


Steve has over 25 years of experience as an information security professional helping clients improve their information security and privacy posture. Steve is based in the UK and has advised clients across UK, Europe and the USA. He focuses on assessing the effectiveness of information security management systems to provide pragmatic advice.

Steve has extensive practical experience of combatting threats from social engineering, technology and processes and procedures. His innovative approach to assessing and implementing effective risk-based security programs has helped clients across all industry sectors.

Steve loves sharing knowledge with technical and business audiences plus debating with peers. He has worked for security specialist companies (Rapid7, RSA Security, Mimecast, Cipher Security, Axent Technologies) and multi-nationals (PwC as a senior manager in their cyber practice, Microsoft in the UK as technical security lead & Hewlett Packard as Regional Manager for EMEA).

Steve passed his CISSP exam in 2017. Steve holds a BSc (Hons) degree in Computer Science and a background as a developer prior to becoming an information security professional.


If you like our Vision and share our Values, click here to join our newsletter for more Cyber Security Leadership insights, or visit our blog