Cyber Security
Organisation, People and Security Awareness
Make your team the first line of defence
The Labyrinth of Cyber Threats
Counter sophisticated phishing, deepfakes & AI threats with advanced awareness
Sophisticated new techniques which target humans by exploiting psychological vulnerabilities and the natural tendency to trust make traditional technical defences insufficient on their own.
Our service is designed to transform your workforce into a
vigilant and responsive front line of defence against cyber attacks. We provide
comprehensive training and engaging workshops tailored to the needs of your organisation.
A New World of threat & response
Sophistication of Threats
Phishing and social engineering attacks have become increasingly sophisticated, making them harder to detect. Attackers use personalised bait, leveraging information available on social media and corporate websites. This sophistication means that training must be as dynamic as the threats themselves.
Pervasiveness of Digital Communication
The digital transformation and the global shift towards remote work have increased reliance on digital communication channels. With more business interactions occurring virtually, the opportunities for cybercriminals to intercept these communications has grown exponentially, making employee training crucial.
Employees as the First Line of Defence
Given the limitations of technological solutions in identifying and stopping all social engineering attacks, employees must act as the first line of defence. By recognising suspicious behaviour, questioning anomalies, and knowing how to respond, they can prevent breaches before they occur.
Deepfakes & AI
The advent of deepfakes and AI technologies has introduced a new dimension to social engineering, allowing attackers to create highly convincing fake audio and video content. This can be used to impersonate trusted figures in an organisation, tricking employees into divulging sensitive information or funds.
Regulatory & Legal Implications
The legal and regulatory landscape around data protection and privacy is becoming stricter, with heavy penalties for breaches. Organisations must ensure that all employees understand the importance of data protection and are equipped to contribute to compliance efforts.
Transforming Awareness into Cyber Resilience
To help strengthen the human firewall, we suggest a mix of activity which can be prioritised according to specific context:
People-Centric Security Programmes: A focus on the human factors in cyber security, including behaviour analysis, motivation for secure practices, and the psychology of social engineering.
Customised Security Awareness Training: Interactive and engaging training sessions that go beyond generic best practices, tailored to the specific threats and scenarios relevant to your organisation.
Leadership and Governance: Guidance for executive leadership and boards on governing cybersecurity efforts, ensuring accountability, and integrating security into corporate governance.
Security Culture Assessments and Transformation: Evaluations of the existing security culture within an organisation, followed by actionable recommendations and transformation programmes.
Metrics and Measurement: Development of metrics to measure the effectiveness of security awareness programmes, tracking improvements in employee behaviour, to continually refine and improve security posture.
Incident Response Preparedness: Tabletop exercises prepare organisations for actual cyber incidents by allowing them to practice their response in a risk-free environment, identify gaps in incident response plans and improve coordination.
Benefits of our model
Driven by expertise
Our team has the experience, technical background, and real-world experience to deal with complex cyber security challenges.
Secure by design
We build security into your IT infrastructure and business processes from the ground up, concentrating on our 6 key areas.
Bespoke roadmaps
We develop tailored cybersecurity roadmaps that consider your specific business models, industry challenges, and risk profiles.
Client-centric model
We ensure close collaboration with our clients. This includes regular updates, clear communication, and flexible engagement models.
Thought leadership
We leverage advanced technologies like AI and automation to improve the efficiency and effectiveness of our solutions.
Training programmes
We offer innovative training and up-skilling programs to foster a culture of cyber security awareness within organisations.
Ready to talk?
Our objective is to transform human behaviour into your strongest asset against cyber threats, evolving a culture that is more aware, observant, deliberate, and proactive. This is particularly important now, in an increasingly sophisticated world of criminal persuasiveness.
Get in touch today to discuss how we can help.
Cyber Security in Numbers
$9.5tr
Cybercrime costs predicted for 2024.
$4.45m
The global average cost per data breach as of 2023; as so many incidents go unreported, this is just the tip of the iceberg.
>$215bn
Expected to be spent on information security & risk management products & services in 2024.
"Companies spend millions of dollars on firewalls, encryption, and secure access devices, and it’s money wasted; none of these measures address the weakest link in the security chain."
Kevin Mitnick, Security Consultant & Hacker
Cyber Security insights




Our Cyber Security practice is led by Tom Burton
Partner - Cyber Security
Tom Burton is a cyber professional with over 20 years of experience in business, IT, and security leadership roles. His expertise lies in simplifying complex security problems and enhancing cyber security and efficiency across various industries such as Defence, Aerospace, and Pharmaceuticals. His approach is based on applying engineering principles to deliver sustainable business change.
Tom's career highlights include serving as a Commissioned Officer in the British Army, where he was promoted to CIO. He later joined Detica (now BAE Systems Applied Intelligence) as the Strategic Advisor to the Ministry of Defence CIO, overseeing a multi-billion set of IT-enabled benefits-driven change programmes. He also held the position of Global Head of Managed Security Services, growing the business from sub-£1m to £15m+ orders.
In 2014, Tom moved to KPMG UK as Director for Cyber Security, responsible for selling and delivering business across various sectors. He co-founded Cyhesion in 2017, developing a SaaS platform to disrupt the Third-Party Risk Management market. Most recently, he founded Digility in 2022 to deliver security and digital transformation consultancy and interim management, serving as Interim CISO at a Tier 1 Outsourced Service Provider.
Our team can be your team
Our team of experts have multiple decades of experience across many different business environments and across various geographies.
We can build you a specialised team with the skillset and expertise required to meet the demands of your industry.
Our combination of expertise and an intelligent methodology is what realises tangible financial benefits for clients.
Our Cyber Security Experts
Gert Van Den Poel
A world-class expert in advising and designing Security Operations Centres for large enterprise, Gert is technical with good business sense.
Get in touch with our Consultants today
Case Studies
Our team has had the privilege of partnering with a diverse array of clients, from burgeoning startups to FTSE 100
companies. Each case study reflects our commitment to delivering tailored solutions that drive real business results.
CASE STUDIES
A little bit about Cambridge MC
Cambridge Management Consulting is a specialist consultancy drawing on an extensive global network of talent. We are your growth catalyst.
Our purpose is to help our clients make a better impact on the world.
ABOUT CAMBRIDGE MC