Cyber & security

Cyber and security

We provide independent, tailored advice to help you reduce the risk of cyber-attacks.

Cyber & security
Contact Us

Contact Us

Bath, England

Richard Hills

Senior Sales Manager - Defence Digital

Richard Hills

Senior Sales Manager - Defence Digital

Bath, England

Richard Hills Contact

Modern cyber security is complex and dynamic and affects nearly everything, but understanding what is relevant to you can be a real challenge. 

Our advice is consistently based on industry best practices, aligned to the level of risk your organization is prepared to accept and delivered by experienced, certified cyber security experts.

 

We are dedicated to providing you with independent and trusted advice to help you identify, understand, and mitigate the risks and help you transform your security position into one that is risk-informed and driven by your business model.

Our approach

Security Strategy, Policy, Process and Standards

Our experts can help you develop or review your overall security approach and help you align it to the most relevant best practices and standards to your domain.

Security assurance (SAC) support

We can provide experienced Security Assurance coordinators or support for your assurance and certification, inputs to options analysis, business cases and approvals.

Cyber vulnerability investigations

Our experienced teams combine cyber, human factors and domain knowledge to assess and understand the vulnerabilities of complex systems.

Cyber threat intelligence

We can help you use, implement, and exploit Cyber Threat Intelligence, allowing you to develop from a reactive posture to a proactive one.

Security and cloud security advice

We help to identify your security boundaries and assure that the security considerations within your systems are adequate and appropriate. We also offer a wealth of expertise in Operational Technology (OT), Internet of Things (IoT) and Information Technology (IT) to help mitigate the complexity of modern solutions.

Preparation of formal security documentation

From RMADS to DART entries, our teams can ensure you comply with the latest Security and Information Risk practices.

Security Risk Reviews and Assessment

We are experts in reviewing security risk, assessing the impact on business and operational risk, and running project Security Health Checks to identify areas for improvement.

Security Architecture Design, Review and Assurance

We work with your development teams to ensure that your on-premises or cloud-based applications and architecture is compliant with appropriate standards.

Security Governance

We work with you to ensure the proper governance is in place for your project or organisation to manage risk, manage your assurance activities and implement and develop compliance.

Data Protection Security Development and Implementation

Maintaining Data Protection compliance is essential to every organisation, so we help you ensure the proper governance and processes are in place.

Summary of capabilities

We provide advice on protective controls, threat detection and security scanning. We also undertake requirement gatherings and help assess and evaluate the technology within proposed vendor products to evaluate them.

Our independent experts understand the domains we work in to provide security advice and risk services. We can provide clear security advice for both simple and complex systems, and we help give you the knowledge and support you need to become self-sufficient.

Organisations are becoming increasingly aware of the importance of security, but good security advice needs to be relevant and applicable to your domain and situation.  What’s more, changing standards and confusing language often complicate matters, but they can be simplified.

Whether your acquisition project involves apples or aircraft carriers, security must be considered from the outset. We support everything from setting the right strategy and establishing appropriate governance to managing risk and creating the right assurance processes.

Key benefits

  • Ensure the availability and integrity of your systems and mitigate security risks.
  • Keep critical systems operational
  • Avoid costly redesigns by integrating security considerations from the start.
  • Keep your commercially sensitive, personal, or other sensitive information secure
  • Ensure you’re fully compliant with relevant legislation

Standards and Methodologies we follow and apply for assurance support:.

  • ISO/ IEC 27000 series, ISO 28000, BS ISO 31000, ISO 22301
  • Risk assessment standards, including ISO27005, OCTAVE and IRAM
  • NIST, OWASP, and ISF Standards
  • Government Security Classification Scheme
  • Cyber Essentials
  • Security Policy Framework
  • Current NCSC Guidance
  • CVI Methodology
  • HMG Infosec Standards, Memoranda and Manuals
  • Secure architectures and infrastructures, including the Public Services Network (PSN), Restricted LAN Interconnect (RLI), Criminal Justice Extranet (CJX) and more sensitive capabilities

Projects

Cyber Assurance Delivery Partner

We are providing a multi-disciplinary team to our customer, who wants to improve the security and security assurance of their multiple processing and distribution systems in platforms and supporting infrastructure.

Related services

Digital services

Digital services

We provide a complete lifecycle approach for our app and data services development service, from discovery to design, build and run.
A digital image of numbers forming a tunnel heading towards the light

Digital transformation

A successful digital transformation leaves your organisation with the ability to evolve to meet the demands of constant change.
Ship design processes

Naval design

We use VR and Human Factors Engineering to ensure our ship designs work and help you understand the model right through the process.
Image of a woman looking at data on a computer screen

Systems engineering

Our systems engineering expertise enables us to deliver complex design capabilities for UK and international defence customers.

Related content

Insights
News
Vidar

AUKUS submarines and the challenge of having enough skilled people

The path to Australia’s nuclear-powered submarine future has many challenges, and while some might underestimate Australia’s ability to make this transition, the challenge and the necessary solutions are doubtlessly receiving the appropriate attention.
Declassified police report brown envelope

The importance of public education and sharing information of digital communications tools

Our national survey helped to understand more about the public’s experience when engaging with their local police forces. It highlights the importance of public education and sharing information around newer digital communications tools for reporting incidents and managing enquiries.
bmt-defence-digital

BMT Proud to Collaborate with QinetiQ and Team Advance on Delivering Next-Generation Tactical Military Communications

Team Advance of which BMT is a member has secured a three-year contract with Defence Digital to deliver the next generation of tactical military communications.
The BMT project teams on stage at the MCA Awards 2023

BMT attends MCA Awards 2023

BMT attends MCA Awards 2023 with 2 Finalist projects.
OAM

BMT’s Gordon MacDonald presented with an Order of Australia Medal

On Monday, 13 June 2022, BMT’s Gordon MacDonald was presented with an Order of Australia Medal (OAM). An honour that recognises Australians for outstanding achievement and service.
A police car light at night

Commendation Awarded to BMT Principal Consultant for Dedication to UK National Specialist Policing.

We're thrilled to today announce that Principal Consultant, Corinna Weller, has been awarded a commendation for both her and her team’s dedication, specifically for supporting digital capabilities transformation within UK National Specialist Policing.
buttonarrow