Company Information

Abnormal AI provides the leading AI-native human behaviour security platform, leveraging machine learning to stop email attacks that evade traditional solutions. Its anomaly detection engine understands identity and context to block socially engineered threats such as business email compromise, credential phishing, and account takeovers helping organisations reduce risk and respond faster with proven efficacy.

Company Website

To learn more, please visit our website - https://abnormal.ai/

Company Information

BlueFort is the UK’s only Full-Service Security Integrator, specialising in identity and access management and advanced cloud security. Its expertise spans OT security, data protection, threat detection and response, compliance, and the safe adoption of AI. By combining deep knowledge with a curated suite of technologies, BlueFort enables CISOs and security teams to consolidate, optimise, and transform their environments delivering stronger protection, operational efficiency, and resilience in a cloud-driven world.

Company Website

To learn more, please visit our website - https://www.bluefort.com/

Company Information

AmberWolf is a high-calibre cyber security consultancy for organisations that cannot afford to overlook real risks.

Our team has deep expertise in offensive security and assurance. We deliver advanced red teaming, penetration testing, product assessments, risk consultancy and remediation support to some of the most demanding and targeted organisations worldwide. We are trusted by central banks, global banks, insurers, asset managers and others to uncover weaknesses before adversaries exploit them.
AmberWolf is accredited to deliver CBEST, operated by the Bank of England through CREST, which also accredit our Penetration Testing and Attack Simulation services, including STAR-FS, designed specifically for the financial sector.

When you need evidence rather than reassurance, we battle-test your security posture, translate findings into clear outcomes for both technologists and executives, and help reduce risk where it matters most. We operate with independence and integrity, ensuring our advice is objective, trusted and aligned with our clients’ best interests.

Company Website

To learn more, please visit our website - https://www.amberwolf.com/

Company Information

Bridge the secure software gap with the only continuously secure software foundation that enables your developers to start secure and stay secure. Eliminate risk and drive business growth with secure-by-default container images that prioritize speed for continuous monitoring and patching of vulnerabilities. Meet compliance requirements for vulnerability remediation faster and unlock business growth. Empower your developers to be developers, with software that delivers foundational security without compromising on flexibility.

At Chainguard, we understand the world already runs on open source. We make it run securely.

Chainguard. The Safe Source for Open Source.

Company Website

To learn more, please visit our website - https://www.chainguard.dev/

Company Information

NormCyber is a multi-award-winning security operations specialist giving organisations clarity and control in an era of relentless cyber risk. Where traditional models rely on tool sprawl and overstretched teams, Norm delivers a hybrid approach: deep expertise, advanced tooling, and 24/7 monitoring and response that integrate seamlessly with in-house governance. The result is resilience that withstands threats, accelerates response, and embeds compliance at the core – turning security from a cost burden into a source of competitive strength.

What sets Norm apart is the experience we deliver: a world-leading NPS of 80+, long-standing customer relationships, and a reputation for making security straightforward and human. Trusted by financial services, banking, and insurance leaders, as well as enterprises in logistics, supply chain and retail, we provide measurable outcomes that protect business value, reduce complexity, and free capital for growth.

Company Information

Risk Ledger is the cutting-edge platform for third-party risk management, transforming how organisations secure their supply chains. By empowering security and procurement teams with real-time insights, Risk Ledger ensures complete visibility and control over third-party risks.

Our Defend-as-One approach fosters collaboration, reduces compliance burdens, and strengthens your cyber defences with evidence-based, up-to-date risk assessments. With Risk Ledger, every link in your supply chain is fortified, ensuring your organisation is protected against emerging threats in the supply chain. Together, we are building a more secure future because every link matters in cybersecurity.

Company Website

To learn more, please visit our website - https://riskledger.com/

Company Information

In cyber security, you can’t fix what you can’t see. The very nature of Active Directory, Entra ID and Azure create invisible attack paths that risk escalations to nearly everything in your stack. Guided visibility of your identity attack paths and directory hygiene are critical.

BloodHound Enterprise is the go-to platform for Attack Path Management, empowering identity and security teams with continuous prioritisation, remediation guidance and verification and reporting metrics that let you see improvement over time in reducing identity attack paths. Beloved by hundreds of global corporations and government departments, BloodHound Enterprise dramatically reduces the risk of lateral movement and privilege escalation in Active Directory, Azure AD / Entra ID, and hybrid Azure environments. BloodHound Enterprise is made by SpecterOps, is designated FedRAMP High by the U.S. FedRAMP program, and complies with SOC 2 Types 1 & 2 and ISO 27001 & 27017.

Company Website

To learn more, please visit our website - https://specterops.io/bloodhound-overview/

Company Information

Simplifying technology, amplifying success

Formed in 2000, Wavenet is the UK’s most trusted managed service and security provider.

Through its broad portfolio in cyber security, connectivity, cloud and communications, blended with the power of AI and automation, Wavenet’s award-winning solutions help customers drive digital transformation.

Company Website

To learn more, please visit our website - https://www.wavenet.co.uk/

Company Information

Edgescan is a cloud-based cybersecurity platform offering continuous vulnerability management and penetration testing as a service (PTaaS). It unifies five key solutions: External Attack Surface Management (EASM), Risk-Based Vulnerability Management (RBVM), Application Security Testing (AST), API Security Testing, and PTaaS. By combining automation with human validation, Edgescan eliminates false positives, delivering actionable, risk-prioritized intelligence. Its proprietary Edgescan Validated Security Score (EVSS), alongside EPSS, CISA KEV, and CVSS, helps organizations focus on critical threats. The platform provides full-stack visibility, identifying assets, rogue APIs, and shadow IT across networks, web applications, and mobile environments. Designed for scalability, it integrates with tools like AWS and Jira, reducing tool sprawl and operational costs by up to 60%. Serving diverse industries globally, Edgescan enhances security posture through comprehensive reporting, on-demand retesting, and AI-driven insights, ensuring robust protection against evolving threats.

Company Website

To learn more, please visit our website - https://www.edgescan.com/

Company Information

eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organisations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.

Company Website

To learn more, please visit our website - https://www.esentire.com/

Company Information

Socura reduces cyber risk by proactively detecting and responding to threats, 24/7. Our Managed Detection and Response service forms an extension of an organisation’s security team – bolstering resilience and easing the complexity of security operations with experienced SOC experts, best-in-class controls and curated threat intelligence.

Recognised as one of the top 250 managed security service providers globally, Socura is a trusted partner of public and private sector organisations. This includes leading firms across the financial services sector and the national SOC of Wales.

Security teams love that we work with them shoulder-to-shoulder, are always ready to respond in critical moments, and provide additional expertise to achieve a proactive approach. They also appreciate that we don’t blindly pass on alerts; we contain and disrupt them and resolve 96% of incidents without customer escalation.

Headquartered in Cardiff, Socura is CREST-accredited for Security Operations. Our UK-based team is also SC cleared.

Company Website

To learn more, please visit our website - https://socura.co.uk/

Company Information

Tenable® is the exposure management company, exposing and closing the cybersecurity gaps that erode business value, reputation and trust. The company’s AI-powered exposure management platform radically unifies security visibility, insight and action across the attack surface, equipping modern organizations to protect against attacks from IT infrastructure to cloud environments to critical infrastructure and everywhere in between. By protecting enterprises from security exposure, Tenable reduces business risk for more than 44,000 customers around the globe.

Company Website

To learn more, please visit our website - https://www.tenable.com/

Company Information

Invicti Security leads in modern application security with best-in-class DAST at the core of a platform built for risk posture management. Proof-Based Scanning™ delivers 99.98% accuracy by validating real, exploitable vulnerabilities—cutting false positives and streamlining remediation. AI innovations and engine upgrades make the world’s best DAST even better, helping teams uncover more critical issues across web apps and APIs—faster and with less noise.

Company Information

Nethermind is a leading research and engineering firm specializing in privacy, zero-knowledge (zk) technology, and security. We support financial institutions in addressing critical priorities such as regulatory compliance, data protection, identity, and risk management – areas where trust and confidentiality are essential.

Our expertise lies in applying advanced cryptography to real-world challenges. By harnessing zk proofs, privacy-preserving computation, and verifiable execution, we enable institutions to validate and share information securely, without exposing sensitive data. These capabilities are increasingly fundamental for meeting evolving regulatory requirements, strengthening identity frameworks, and enabling collaboration across jurisdictions and counterparties.

Nethermind brings together cutting-edge research with production-grade engineering, ensuring that solutions are not only theoretically sound but also operationally robust. Our mission is to build the secure cryptographic foundations on which the future of financial services will operate – where compliance, privacy, and innovation can advance together with confidence.

Company Website

To learn more, please visit our website - https://www.nethermind.io/

Company Information

ProcessUnity is the Third-Party Risk Management (TPRM) company. Our software platforms and data services protect customers from cybersecurity threats, breaches, and outages that originate from their ever-growing ecosystem of business partners. By combining the world’s largest third-party risk data exchange, the leading TPRM workflow platform, and powerful artificial intelligence, ProcessUnity extends third-party risk, procurement, and cybersecurity teams so they can cover their entire vendor portfolio. With ProcessUnity, organizations of all sizes reduce assessment work while improving quality, securing intellectual property and customer data so business operations continue to operate uninterrupted.

Company Website

To learn more, please visit our website - https://www.processunity.com/

Company Information

Wales is a thriving hub for Financial Services and Cyber Security organisations. As one of Europe’s leading cyber ecosystems, South East Wales is home to global players like Airbus, Thales, PwC, and CGI, alongside agile SMEs and world-class academic institutions.
This strong cyber foundation complements a vibrant Financial Services and FinTech sector, with major names such as Starling Bank, Monzo, Admiral, Confused.com, Go.Compare, and Legal & General operating here. The result is a collaborative, innovation-driven environment ideal for FinTech and Financial Services companies seeking secure digital growth. The close synergy between cyber and finance sectors provides direct access to expertise and skilled talent, making Wales a strategic location for scaling in a tech-driven economy. The Welsh Government’s Trade and Inward Investment Team offers tailored support for businesses looking to expand in Wales, connecting you with key decision-makers and providing support to help make your investment in Wales a success.