Each engagement is defined: scope, time, outcome. We take the work that has a clear edge. We say no to the work that doesn't. The list below is the practice.
A two-week read of your existing management system against the standard you're certified to — or want to be. Output: a gap register, risk-ranked, with named clause references and remediation effort estimates. Read in a board meeting in twenty minutes.
Why this exists. Most certified organisations don't fail audits because the standard is unreasonable. They fail because nobody reads the standard against the system in cold blood. We do.
We write the system, implement it inside your business, run the internal audit, and walk your team into the certification audit. We do not hand you a SharePoint folder of templates and disappear.
Why this exists. Templates fail at follow-up question two. A management system has to be the way the business actually runs, or the auditor finds the seam in twenty minutes. We build for the auditor's second question, not the first.
DD response portals, sanctions screeners, evidence libraries, role-keyed training matrices, transit evaluation tooling. Built, branded, audit-ready. Configurable for the way your business actually operates.
Why this exists. A management system is only as defensible as the evidence it can produce on demand. We build the infrastructure that turns the quarterly audit panic into a daily background process.
Pre-audit rehearsal, evidence pack curation, in-room support during the audit itself. We sit on your side of the table. The auditor leaves with a thin nonconformity list. Your team leaves with a process they can run again.
Why this exists. An audit is not adversarial — but it is structured, and structure rewards the prepared. Most organisations prepare for the wrong things.
Monthly retainer. Strategic counsel for the in-house team. Board-ready quarterly reporting. The awkward-question backup when the regulator calls. Twenty years of inside-the-sector judgment, on a phone line.
Why this exists. Most growing security and maritime firms can't yet justify a full-time compliance director. They still need the judgment that role brings. This is that role, fractional.
Cohort-based coaching for in-house compliance teams. Sector-specific worked examples. Real audit findings, anonymised. Your team leaves with a practice, not a binder.
Why this exists. The best compliance functions aren't bought in. They're built up. We accelerate that build by ten years.
