Security Faculty

Who we are

Security Faculty is a high-end 'Knowledge Management' company offering training & development, research and collaboration services for the security and risk management community. The company was co-founded by Paul Dorey and David Morgan who each bring with them over 20 years experience in security and risk management which includes proven track records in senior leadership roles at large multinational organisations.

The Faculty also includes a network of experienced Associates, drawn from ex-CISOs, Security Strategists, Leadership Development Professionals and Academics who are also acknowledged experts in their respective fields.


our clients

Security Faculty's clients include some of the largest vendors, corporates, and service providers in industry; we also enjoy excellent relationships with a number of smaller companies who also recognise the value we can bring to their businesses. Recent assignments include setting up and running a CISO Advisory Council for a large outsourcing firm, delivering on-line security leadership training courses for a leading IT vendor, undertaking an industry-wide security benchmarking exercise for 20 blue chip organisations and running security master classes for several of our clients.

We are also part of the I4 leadership team https://i4online.com

What we do

In recent years the role of the Chief Security Officer (CSO/CISO) has evolved and is now recognised as a senior business leader. The CSO/CISO is now expected to undertake a broad range of management activities as well as being a subject matter expert. Unsurprisingly, many CSOs/CISOs are not fully equipped to meet the increased expectations of these new senior executive roles. This fact has been acknowledged by a number of industry bodies but as yet there is no definitive solution.

Security Faculty was formed to fill this gap by helping individuals and organisations to develop and maintain their security management capability through tailored training and development services for security executives and their teams and for 'client facing' security staff. This is underpinned with dedicated research and collaboration services which deliver a number of key business benefits to end user companies and/or the vendor community and include the following:

  • Be able to understand the role of the CISO, their business drivers and strategic/tactical agendas and learn to speak their language
  • Provide a cost effective way to develop and retain internal and/or 'client facing' security leadership skills
  • Offer significant saving in time for internal security executives or client relationship teams in the area of personal/team development
  • Fast track development of aspiring security executives and/or 'client facing' security staff by having access to experienced security business leaders
  • Deliver applied research and benchmarking to help companies to build internal businesses cases and match capabilities to the changing threat environment and business models
  • Push the boundaries on innovative security thought leadership and by the sharing of industry best practice by establishing collaborative security communities/councils