Solutions
- Cyber Risk
  
  We bring the best of our collective experience, energy and creative power to fiercely safeguard our clients and fortify their communities.
  
  We bring the best of our collective experience, energy and creative power to fiercely safeguard our clients and fortify their communities.
- Third Party Risk Management
  
  Automate, accelerate and centralise third-party risk management across your critical service providers and other relationships with our market-leading solution.
  
  Automate, accelerate and centralise third-party risk management across your critical service providers and other relationships with our market-leading solution.
- Bank Network Management
  
  The only comprehensive solution for Bank Network Management, supporting most of the world’s largest banks manage their complex global networks, local market exposures and compliance requirements.
  
  The only comprehensive solution for Bank Network Management, supporting most of the world’s largest banks manage their complex global networks, local market exposures and compliance requirements.
- Capital Markets
  
  The world’s leading global advisory practice for financial market infrastructures since 1994, supporting FMIs to manage risk, regulation and market transformation.
  
  The world’s leading global advisory practice for financial market infrastructures since 1994, supporting FMIs to manage risk, regulation and market transformation.
- Funds
  
  We provide independent advice across custody and investment operations, helping our clients achieve best market practices. We also provide a powerful automated solution for Operational Due Diligence (ODD) and Third-Party Risk Management.
  
  We provide independent advice across custody and investment operations, helping our clients achieve best market practices. We also provide a powerful automated solution for Operational Due Diligence (ODD) and Third-Party Risk Management.
Platform
- Orbit Risk
  - Orbit Intelligence
    
    Orbit Intelligence captures your risk landscape, pulling together insights from across the platform. It centralises risk analysis, data, and news on your portfolio of monitored organisations.
    
    Orbit Intelligence captures your risk landscape, pulling together insights from across the platform. It centralises risk analysis, data, and news on your portfolio of monitored organisations.
  - Orbit Diligence
    
    Orbit Diligence automates your DDQ and RFI processes for a wide range of use cases, accessing a library of off-the-shelf questionnaires and risk frameworks, freeing up valuable resources.
    
    Orbit Diligence automates your DDQ and RFI processes for a wide range of use cases, accessing a library of off-the-shelf questionnaires and risk frameworks, freeing up valuable resources.
  - Orbit Security
    Enterprise Cyber Risk
    
    Enhance your cyber risk management by gaining complete visibility over your attack surface. Orbit Security monitors for breaches and vulnerabilities that could be exploited by threat actors, so you can prioritise remediation.
    
    Enhance your cyber risk management by gaining complete visibility over your attack surface. Orbit Security monitors for breaches and vulnerabilities that could be exploited by threat actors, so you can prioritise remediation.
    Third Party Cyber Risk
    
    Manage your exposure to critical third parties with continuous, data-driven monitoring. Analyse any entity’s security posture with Orbit Security Ratings and digitised IT Security questionnaires.
    
    Manage your exposure to critical third parties with continuous, data-driven monitoring. Analyse any entity’s security posture with Orbit Security Ratings and digitised IT Security questionnaires.
    
    Orbit Security Ratings are an automated, powerful way to continuously monitor the cyber security posture of your organisation and the third parties it relies on, with data-driven analytics so you can enhance the security of your ecosystem.
    
    Orbit Security Ratings are an automated, powerful way to continuously monitor the cyber security posture of your organisation and the third parties it relies on, with data-driven analytics so you can enhance the security of your ecosystem.
  Achieve trust, transparency and security with a single platform. A leading solution for companies looking to digitise and automate their risk management, leveraging Intelligence, Diligence and Security.
  
  Achieve trust, transparency and security with a single platform. A leading solution for companies looking to digitise and automate their risk management, leveraging Intelligence, Diligence and Security.
Insights
- eBooks
- Articles
- Webinars
- Whitepapers
- Newsletters
  MONTHLY
  Risk Committee
  Insights into the key events in the world’s banks and markets from our team of analysts, FMI experts and network managers.
  
  DORA Digest
  Stay ahead of developments as implementation of the Digital Operational Resilience Act enters its final stages.
  
  WEEKLY
  Cyber Series
  Each week, our cyber security experts take an in-depth look at the key issues and events shaping the digital world.
  MONTHLY
  Risk Committee
  Insights into the key events in the world’s banks and markets from our team of analysts, FMI experts and network managers.
  
  DORA Digest
  Stay ahead of developments as implementation of the Digital Operational Resilience Act enters its final stages.
  
  WEEKLY
  Cyber Series
  Each week, our cyber security experts take an in-depth look at the key issues and events shaping the digital world.
Customers
About Us

Under cyber attack?

Call our incident response team 24/7 on +44 (0) 207 459 4888 for immediate help from our friendly experts

27 November 2023

A guide to using the new NIST Cybersecurity Framework

The NIST Cybersecurity Framework v2, also known as CSF 2.0, is a new set of guidelines developed by the US National Institute of Standards and Technology (NIST) to help organisations around the world to manage and reduce their cyber security risk.

Cyber Risk eBooks

The NIST Cybersecurity Framework v2, also known as CSF 2.0, is a new set of guidelines developed by the US National Institute of Standards and Technology (NIST) to help organisations around the world to manage and reduce their cyber security risk.

The huge leaps forward in digital capabilities we’ve seen recently are accompanied by a rise in the threats that businesses and individuals face online. To help navigate this complex landscape, we’ve created a comprehensive guide to CSF 2.0.

This downloadable PDF provides an in-depth look at the NIST framework, and covers everything from understanding the framework’s core functions, categories, and subcategories, to implementing the framework in your own organisation.

Download your eBook today and take the first step towards a more secure future.

Fill out the form to download your copy

Insights

Thomas Murray and Crimson7 Announce Strategic Partnership to Modernise Threat Informed Security

13.11.2024

2 min read

Thomas Murray and Crimson7 Announce Strategic Partnership to Modernise Threat Informed Security

Thomas Murray and Crimson7 are partnering to combine their expertise and create innovative solutions for tackling key cyber security challenges.

Thomas Murray and askblue partner to support financial institutions in meeting the Digital Operational Resilience Act (DORA) requirements

12.11.2024

2 min read

Thomas Murray and askblue partner to support financial institutions in meeting the Digital Operational Resilience Act (DORA) requirements

Thomas Murray and askblue are collaborating to provide services that help financial institutions comply with DORA requirements.

Threat Intelligence for Law Firms: Protecting clients in the digital age

06.11.2024

6 min read

Threat Intelligence for Law Firms: Protecting clients in the digital age

As a law firm, protecting your clients' data and reputation is more critical than ever in today’s digital-first world.

Thomas Murray announces strategic partnership with The Expert Witness Institute

30.10.2024

2 min read

Thomas Murray announces strategic partnership with The Expert Witness Institute

This collaboration strengthens Thomas Murray’s role in enhancing expert testimony in cyber security and forensics.

Our experts

Roland Thomas

Roland Thomas

Associate Director | Cyber Risk

rthomas@thomasmurray.com

Phoebe Jordan , Managing Director | TPRM

Phoebe Jordan

Managing Director | TPRM

pjordan@thomasmurray.com