Following the announcements on 30th September 2015 of Cisco’s intention to acquire Portcullis, we are pleased to announce the deal has been formally completed and Portcullis is now part of the Cisco family.

Cisco has acquired the Portcullis entities in the UK, USA, Spain and France creating one of, if not the world’s largest security assurance teams. Portcullis joins the Security Advisory Services team and will form the nucleus of that team throughout EMEA and Russia.

More information on Cisco Advisory Services can be found here:

Paul Docherty
Co-Founder & Director

Where do I begin, today we celebrate our 23rd Birthday, we have gone through the growing pains, through the awkward teens and are now facing life as an adult. Its been quite a ride so far and, the truth is, we are just getting started.

The good ship Portcullis, privately owned and still steered by the founding directors; Mark Lane, Paul Docherty and Peter Edgeler, having spent most of its life moored up in the grange barn in Pinner (how I miss that barn) sailed the short distance to its new Dock at Portcullis House. Continue reading

We have all heard a great deal, for some time now, about the Internet of Things (IoT) revolution. To my simple mind IoT means machines talking to one another.

I Googled it and apparently the phrase was first coined by a Brit called Kevin Ashton in 1999. He is a tech entrepreneur who designs remote sensors and came up with the term to distinguish between data which is created by humans and then entered into computers, as opposed to computers collecting and swapping data without any need for our involvement. In the intervening years, IoT has rapidly taken shape with gadgets from phones to fridges and integrated itself into our daily lives.

Continue reading

For all the talk of foreign states hacking various organisations, criminal gangs seeking to monetise information and hacktivist groups, the truth is that most security incidents are caused by organisations’ own staff and normally they are trying to do something good for their employer. It is not malicious, it is just misguided and often is in line with company practice, culture or policy. Generally these incidents are small or near misses, but there are enough big ones to cause concern. Continue reading

Another year, another 44CON, a technical highlight in the security consultant’s calendar. Portcullis sent some of the Team to keep up to date on the latest attack vectors presented and to add to the pool of knowledge. Portcullis Penetration Tester James talks through his time at 44CON 2015. Continue reading

It was honest of Sarah Thornton to suggest that the traditional approach of sending a police officer to the scene of every crime, after the event, may need to become a thing of the past.


As Chair of the National Police Chiefs’ Council and former Chief Constable of Thames Valley she speaks from experience and should not be dismissed just because what she has to say doesn’t go down well with the chattering classes. She recognised that the steep growth in cyber-crime is going to force the police to reallocate limited resources to fight it. Different priorities will need to be made and policing will need to revolutionise the training of cyber-skills. This certainly provoked a negative reaction from the media.

Continue reading