Core Members


There are now more than 70 small companies in the Malvern Cyber Security Cluster. The companies listed below are a selection of the Core Members. We also have Satellite Members which are cyber security SMEs based outside the Malvern region, Associate Members which support companies in the cyber security market, and Big Company Members who are large companies working in cyber security but keen to partner and collaborate with the smaller companies.



Working in the most secure of environments, ACS Consultants and Engineers are dedicated to solving our clients’ most difficult problems. We combine deep industry knowledge with extensive skills in consulting, technology and engineering. This allows our teams to use their substantial domain experience to focus on achieving the business outcomes and objectives in order to achieve our clients’ goals. Our capabilities include cyber and communications technologies, project management, systems engineering, networking, and IT infrastructure. Our experience covers the full lifecycle, including requirements elicitation, design, implementation, test, verification and validation.

Advent IM is the UK's leading independent information security and physical security consultancy. We specialise in holistic security management solutions for Information/Cyber Security, HMG Information Assurance and Risk Management, Business Continuity, PCI-DSS and Physical Security and have a proven track record of successful certifications including Cyber Essentials/IASME. Advent IM are also officially listed as Cyber Security Service Suppliers to HM Government.

Ascentor are independent Information Risk Management specialists who view information security as a powerful business enabler. The advice we give protects your information and strengthens your business for the future. Whether you are a Government department Local Authority, Government supplier or commercial business we want to help you raise your game. We have an excellent reputation as independent providers of Information Risk Management consultancy (IRM) and Information Assurance services at the highest level of data sensitivity and are passionate about the real business benefits a well thought out and efficiently managed IRM solution can bring to organisations large and small alike


Assure Technical offers a holistic approach to Technical Security. Our expertise and services span across the Physical, Cyber and Counter Surveillance domains, enabling us to protect our clients against all threat vectors. We are a young, independent and dynamic company with an ethos built around pragmatism, integrity, flexibility and trust. We draw upon extensive Commercial and operational Military experience, and work with a trusted network of highly experienced partners and consultants. All of these factors combine to ensure we maintain a low cost base, respond effectively to fluctuations in demand, and ultimately provide world class, value for money solutions.

 borwell logo

The borwell team delivers secure software and IT solutions to UK Government departments. The team also works for NATO, the EDA and other similar organisations. With over 10 years of experience delivering high quality, reliable and secure solutions, our team has become a trusted cyber security delivery partner for a number of organisations, recently winning an MoD award for a software project that supported the London 2012 Olympic Games. The team also supports UK corporations and many SMEs. Custom database solutions, cyber security advice and consulting, and a data diode product, help keep data and systems secure for these clients.

C2B2 are leading independent middleware experts. We specialise in ensuring scalability, performance, availability and security of large scale web and integration systems. We have deep expertise in the Big Data and Event Driven middleware architectures required to process cyber scale data.


C3IA Solutions is a UK based Small Medium Enterprise specialising in the specification, design, test & acceptance, risk management and operational service delivery of secure information and communication systems.   Our differentiator is the expertise that our employees bring, based on experience, qualification and practical application of skills. We know what it is like to have been the defence & security (government) customer and our behaviours reflect this. We are majority DV cleared, intimate with the UK defence and security market sector and have a pan-Defence Lines of Development approach. We deliver System of Systems Engineering best practice, we are ISO 9001 and ISO 27001 accredited for our work. We are actively supporting the delivery of live C4ISTAR and cyber based systems from procedures to technology in the defence and security market.


Charlton Networks provide a complete range of IT infrastructure, network and security solutions aimed at SME companies throughout the region. From system/data recovery services safeguarding and recovering your systems in the event of a disaster through to virus protection, firewalls and secure wireless systems, which allows organisations to safeguard their data, and control access so that wherever you are, whatever you’re using, you’re always protected. Additionally, we offer a range of communications and infrastructure solutions from IP based CCTV, VOIP based telephony, lines, broadband, server virtualization, public and private cloud solutions. We support all this with our own in-house IT support team


CJE provides discreet business consulting services to SME's in Fraud, Cyber Security, and Business Strategy. Recent assignments include preparing and executing sales and marketing plans, strategies for new product launches, solution development and management.


Cyber Crime Investigation is a Worcestershire based digital forensics and incident response company offering services that include the acquisition, analysis and expert presentation of digital data involved in wide ranging matters such as; HR & Employment disputes, Fraud Investigations together with support for Insolvency investigations and other forms of litigation

cyberis logo

Cyberis is an independent information security consultancy delivering coherent security, risk management and assurance through a unified range of innovative services and solutions.


Cyber Security Associates provides a range of strategic and technical cyber consultancy services that can help clients understand the cyber threat to their business, strengthen their resilience and build strong security business cases. We offer a team of Cyber Security Consultants using UK HMG (ex-Military) Specialists all holding enhanced security clearances.

Deep-Secure are specialist providers of software-based products – a family of Guards, carefully designed to meet the requirements of organisations and businesses who have to exchange and share sensitive data between varying security domains and have a demonstrable need to enhance their Cyber Security Position. The product set is well established, evaluated to international standards, EAL4 and specifically aligned to the applications that are exchanging data. This enables secure email, web services and file sharing to be implemented in addition to providing protection for Network Management and Directory Services Traffic in support of a comprehensive Cyber Security Defence platform.


D-RisQ is a company focussed on delivering techniques reduce the development costs of complex systems and software by over 80% whilst maximising compliance to regulations.  We work with companies who develop  systems and software that absolutely must work.  We deliver tools, supported by consultancy wherever necessary, that enable the automatic validation of requirements for highly complex systems and their automatic verification of implementation in software in sectors as diverse as finance and aerospace, automotive and autonomous systems. 


Established in 2006, Encription Limited is a UK based CESG CHECK Green Light IT Security Company operating from a secure location in Worcestershire. From this central location we deliver our penetration testing, forensics and training services worldwide. With our experienced consultants at your disposal, Encription Limited is able to meet your IT security needs, no matter how simple or complex. Our Consultants are all CHECK Team Members or Team Leaders; they have extensive experience in IT security, forensic investigation and penetration testing. We work to ISO27001 and ISEC OSSTMM security standards and we are ISO 9001:2008 certified.


Exercise3 is a specialist consultancy, using realistic cyber scenarios to train organisations how to react and respond in times of crisis. Drawing on years of experience working with Government, commercial and not-for-profit organisations, we have deep expertise in incident response preparedness, planning and testing.


The Friendly Nerd provides practical technology training and support for small businesses in Worcestershire, Herefordshire and Gloucestershire, with a particular focus on cyber security and information assurance. We provide clear, jargon-free advice to enable your business to take simple steps toward being more secure.

We are a UK based bespoke software development company. We specialise in C#, Windows, real time applications development. We currently operate within the defence, medical and engineering sectors, supplying software development and consultancy services to clients in the UK West Midlands and South West regions.

The Herne Hill Consulting Ltd team specialise in Cyber related business change management, security, information assurance and risk. We have extensive experience in the field in both public and private sectors, in the UK and internationally. We also contribute through active participation in several Professional bodies and not-for-profit cyber related organisations

Hex Security Limited is a specialist Information Assurance (IA) consultancy working with associates and partners to deliver security certification and accreditation support to HMG departments, agencies, commercial organisations and service providers. The security experience of our consultants is one of our most valuable assets and provides customers with the required level of expertise and knowledge across a diverse range of industries and technologies. Our priority is to help customers achieve their business goals through the identification and effective management of associated security risks.


Horus Security Consultancy is specialised in ethically sourced global threat intelligence. We apply an innovative and pragmatic approach to mitigating risk and threats, offering services ranging from live threat monitoring and pre-employment screening to due diligence and consulting. The Horus team is comprised of analysts and researchers from the best UK universities, directed by consultants with extensive experience from military intelligence and law enforcement. Our services and products are fully bespoke and tailored to our customers’ specific needs.


IASME is the information and cyber security standard for small companies. It is based on international best practice and provides the only credible application of security management for the majority of small organisations including businesses, small government departments and the charity sector. The standard is risk-based and is supported by an infrastructure of accredited assessors and independent moderators. IASME is governed by its certification body, The IASME Consortium, which issues certificates to organisations who demonstrate compliance with the standard.



InnovaSec is a specialist consultancy in cyber and physical security technology.


IRMLogo 150pxw 

IRM is an international consultancy that is dedicated to helping organisations solve key and current business issues. We provide strategic cyber security advice across a wide range of sectors and ensure that executives, management and technical teams understand the risks posed to their organisation.

IRM is able to strengthen dynamic links between risk management and business strategies in order to balance the views of employees, management and shareholders alike. We help organisations take an integrated approach to cyber security that considers both their people and technology and facilitates a complete transformation of their cyber security function.


Mandalorian Security Services are a CHECK green penetration testing organisation. Specialising in working with Government clients (both Local and Central), Defence and Banking clients, Mandalorian pride themselves on working in partnership with their clients.


OSPL is a manufacturer of TEMPEST, Rugged and Secure Solutions to Military organisations and Government Agencies worldwide. The company operates and manages an ISO17025 and NATO SDIP-55 accredited TEMPEST test facility that is approved by both the Dutch NTA and the NATO NCIA Agency OSPL is capable of performing TEMPEST testing and modification to the highest NATO, EU and German TEMPEST test standards; SDIP-27, ISAG and ER-Kurzvermessung respectively. In addition to its comprehensive range of TEMPEST IT equipment, OSPL also provides TEMPEST test and certification services, shielded enclosures, consultancy, installation, maintenance services and TEMPEST re-engineering and or recycling/disposal.

Ripjar are revolutionising the way our customers make sense of data. Our products support seamless traversal from billions of items to the most valuable. We are making big data, small through our secure, scalable, Analytic Framework

Sandettie are an independent consultancy, established in 2009 it set about to help organisations change where change is important. Since starting, they have spent majority of their assignments working with organisations improving Cyber and Information Security. We have the skills to bridge the gap between the technical and business needs around information security. We have experience of running both large and small companies so we can take a truly holistic view of any organisations requirements.


SCdocumentation specialises in the provision of documentation services to the Cyber Security community. SCdocumentation provides all the documentation required for successful projects, products, compliance and policy documents. Whether it is system design, ISO27001, disaster recovery or resilience, SCdocumentation can write or provide templates to maximise the effectiveness of your investment in these areas.


Surevine design, build and deliver secure digital workplaces for UK Central Government and organisations with equally demanding security requirements, to harness the power of internal expertise in a safe trusted environment. Our solutions are used in a broad range of domains including cyber incident sharing and management.

Titania is a UK cyber security software company. Since launching commercially in 2010, the company has grown rapidly and now supplies to 60 countries worldwide. Our multi-award-winning software (Nipper Studio and Paws Studio) automates network security and compliance audit reporting processes. It enables organisations to make substantial savings by achieving in seconds what typically take days or weeks to carry out manually. As a result of the software’s unique ability to operate without the need to physically connect to the network, it is favoured by organisations with high-security networks - such as governments, military, banks, and critical national infrastructure operators.


TMC Security Solutions Ltd was formed in 2013 in order to meet the growing needs of individuals, companies and organisations wanting to manage their information security defences in an ever-changing cyber environment. Our market leading software, MAISIE, is a product of our experience. It has been developed in order to provide a consistent, repeatable and structured process foundation to the information security risk management function. It is designed to be used by both Information Security professionals within an organisation and the specialist consultants that support them. 


Venture Cyber Security provides services that form an integral part of an organisations infrastructure and can help secure your organisation or company against a cyber attack. These attacks on business networks increased by an alarming 62% in 2013, and we can help by providing cyber security analysis reporting, penetration testing, cyber security policy reviews, vulnerability assessments, compliance, auditing, consultancy, risk management and training employees to be more cyber security aware. Join the growing number of companies you don’t hear about in the press for the wrong reasons since working with us on their cyber security projects. 


Zybert Computing Ltd develops data security solutions - hardware, software and services for small organisations. We are involved in a new project called MySafeWare providing a complete set of secure versions of data handling systems - Remote Access, Backup, Disaster Recovery, File, Email and Database archiving, document storage, transport and verification, secure cloud services.