Protecting information systems, the data on them and the services they provide, from unauthorised access, harm or misuse.

Mitigating the risk of our trusted people exploiting their legitimate access to an organisation’s assets for unauthorised purposes.

Protecting physical assets, including people, services, infrastructure, systems, places, equipment and networks.

Holistically protecting sensitive information and technology from close access acquisition by hostile threat actors, as well as from any other form of technical manipulation.