top of page
Security Education, Risk, Resilience Awareness and Culture
Security Education, Risk, Resilience Awareness and Culture

Security Risk Management


ERG's Security Risk Design (SRD) framework delivers risk management services in accordance with the internationally recognised standard, ISO 31000: Risk Management. Having analysed an organisation and the context within which it operates, threat and business vulnerability assessments are conducted, prior to risk analyses. Penetration tests may be carried out to assess existing security systems.

Having determined the greatest risks to your organisation, ERG can work with you to design risk mitigation strategies, which implement and maintain an appropriate and cost-effective convergence of physical, personnel and information security systems, and business resilience solutions.​

Business Analysis
During this context building phase of an ERG Security Risk Design Assessment, we develop a detailed understanding of your organisation, its resources, and assets,  structure, culture, and risk appetite.

What can we do?

  • Threat & Vulnerability Assessments

  • Security by Effect Assessments and Audits

  • Security by Effect Security Architecture Design

  • Embed Advisors at Strategic, Regional and Site Level

  • Design Security Risk Management Policies

  • Calculate the Security Design ROI

  • Design Crisis Management Plans

  • Design Security SOPs

  • Behavioural Monitoring & Detection

bottom of page