We help organisations understand and manage their cyber risks

“72 per cent of large businesses reported cyber security breaches or attacks in the last 12 months”

The Threat

Your organisation along with its people, online systems, devices, networks and data are at risk of cyber attack

The Boards of large organisations know these attacks are growing in sophistication, frequency and severity and yet their visibility and understanding of cyber risk and protection is often inadequate.

Boards increasingly understand that cyber security is about enterprise protection - not just data protection. They know that cyber attacks can be costly to reputation and market value and serious attack can pose existential threats to their organisation.

We can help you and your organisation understand and manage cyber risks. We deliver that understanding through our Insight and Design capabilities.

Who We Are

We are Cobweb Cyber

We were founded by George Zambellas, former Head of the UK’s Royal Navy, and Michael Hawthorne, former UK Defence Cyber Operations Chief.

We bring together some of the UK’s leading military and governmental cyber practitioners and have deep experience working with Boards.

Our authority is based on executive ownership of cyber risks in security environments where the consequences of a breach dwarf those faced by virtually all civilian organisations. Which means our approach is intensely practical and operational - we are not deskbound advisors or consultants.

What We Do


Our Insight capability is focussed on delivering clarity and understanding to Boards of large organisations on cyber issues using online tools, board level advisory work and forensic cyber assessments (health checks).

Our senior security team has expertise in strategy, policy, assessment, offensive and defensive cyber techniques. With proven success at the highest levels of business and government, we are a special advisor to major boards and a trusted provider of forensic cyber assessments.

Secure by Design

Our design team specialises in leadership, strategic planning, security architecture, information risk management, advanced engineering, budget management, program delivery and stakeholder relationships.

They can help you build resilience into your new technology, new products, processes and infrastructure - so they and in time your entire enterprise will be secure by design, not by retrofit.


Our team’s recent clients include:

Our team has conducted numerous cyber assessments, board advisory and design assessments for large national and multinational organisations in a range of sectors including healthcare, financial services, transportation, logistics, technology and professional services.

Recent assignments include:

Large UK insurance company with CREST-FCA compliance issues

Global shipping company in the container, bulker, tanker, offshore and leisure sectors using the NIST Cyber Security Framework

European super yacht boatyard

Publicly quoted US Company keen to improve its market rating by demonstrating a best in sector cyber governance capability

US shipping company that is upgrading and future proofing connectivity between its HQ, ships, land-based facilities and other capital assets

Large European ferry company using the Cyber Essentials Plus Framework and ISO27001:2013

UK accountancy firm using the Cyber Essentials Plus framework and GDPR