our approach

The leaders at Reveal Risk approach every client’s business as it if it were our own.  We believe a consulting firm should be more than your advisor. We put ourselves in your shoes (given we have actually been in your shoes for most of our careers), align our incentives with your objectives/outcomes, and collaborate and innovate to unlock the full potential reducing risk and accelerating the results of your business. This builds deep and enjoyable relationships and formulation of trust.

Every project we do for our clients is steeped in helping understand your business risks and how you can maximize the impact of your risk reduction effort.  Whether you are a deep expert in your business or not yet versed in your company’s business and risks, we can help you progress your understanding and how you apply it.

We bring you: 

  • Premium resources with a minimum of 15+ years experience in key corporate information security and privacy roles (the average is 20 years).  
  • We do not use multiple layers of consulting management:  managers, directors, partners, and staff pricing schemes.   
  • We also have full cybersecurity domain coverage (people, process, technology; strategy & execution)  
  • Broad industry experience (defense, healthcare, Pharma, manufacturing, sales & marketing, education, and energy).  
  • We strive to produce solutions that maximize your investment, value, and outcomes within your business (not sell you on a subsequent implementation project or give you just enough value to pay for the next project – “to be continued” consulting) 

Cyber risks in healthcare extend far beyond HIPAA compliance. The volume of healthcare-targeted cyberattacks (especially ransomware) has significantly risen in recent years as has the number of connected devices providing patient care, all while cost pressures continue.

Pharma / Biotech

Pharmaceutical and Biotech face a trifecta of existential business risks with significant cyber components: intellectual property theft (which usually represents more value than the raw ingredients themselves), manufacturing disruption, and compromise of clinical trial data.


Technology companies face a rapidly-changing landscape of partners and competitors and must deal with both risk to their own intellectual property and brand as well as the large volume of customer and consumer information they handle.

Financial Services

Criminals have always targeted banks because “that’s where the money is.” The modern financial system with thousands of partners means that the risk extends well beyond banks to include processors, intermediaries, and service providers that have been historically safe.


Retail has come a long way from the cash-for-goods transaction of old. Modern retailers deal with massive supply chains, point-of-sale malware, huge volumes of customer data, and distributed infrastructure, all while satisfying consumer demand for instant gratification.


The rise of Industry 4.0 and the connected plant is sparking a revolution in manufacturing. Industrial control (SCADA) and operational technology is more networked than ever before, creating new categories of risk