Anonymised Case Studies

Situations we've been brought into.

The following case studies are fully anonymised. Client identities, geographies, and identifying operational details have been removed or changed. They are presented to give prospective clients a realistic picture of the environments and challenges the advisory addresses.

01
Principal Assessment

Rapid exposure review following acquisition of a second passport and new primary residence

Privacy Identity Transition

Situation

A private equity principal relocating primary residence across jurisdictions commissioned a full exposure assessment ahead of the move. The client had accumulated significant digital history, multiple business identities, and a household of twelve including staff and adult children — all with varying degrees of digital hygiene.

Approach

  • Full OSINT and data broker audit across all principal identifiers
  • Credential and account inventory across personal, business, and estate structures
  • Staff and vendor access review for the transitioning household
  • WEM baseline score established pre- and post-intervention

Outcome

WEM score reduced from 87 to 61 over a twelve-week engagement. Eleven data broker listings suppressed. Three dormant high-access accounts closed. Estate vendor access governance documented for the first time.

WEM 87 → 6112 weeks
02
Retained Advisory

Family office CIRO function for a multi-generational wealth structure with seven principals

Governance Family Office Resilience

Situation

A single-family office with operations across four jurisdictions had no dedicated security or resilience function. Following a spear-phishing incident that compromised an estate manager account, the principals engaged Stoneveil to establish ongoing cyber and resilience governance for the full family structure.

Approach

  • Fractional CIRO retained across the family office and four operating entities
  • Incident review and remediation of the compromised account
  • Governance framework built for all seven principals and key staff roles
  • Quarterly risk review and annual full-environment assessment established

Outcome

The retained advisory relationship now spans three years. A full vendor access registry has been built and is maintained quarterly. Two subsequent social engineering attempts against staff were identified and contained before compromise.

3-year retained engagement
03
Project Engagement

Smart estate and vessel technology architecture review ahead of full system replacement

Technology Estate Vendor

Situation

A principal with three primary residences and a superyacht was replacing aging estate technology across all properties simultaneously. The integrator proposed a unified platform with remote management access. The client wanted independent review of the security and resilience implications before committing to a multi-million pound installation.

Approach

  • Review of proposed architecture, vendor credentials, and remote access model
  • Third-party access risk assessment for the persistent integrator connection
  • Alternative segmentation approach designed to preserve integrator functionality while reducing blast radius of any compromise
  • Contractual requirements drafted for the technology services agreement

Outcome

The installation proceeded with a revised segmentation model. Remote access was scoped to specific systems rather than full network access. A contractual security schedule was added to the integrator agreement — the first of its kind in the client's estate management history.

Architecture approved6-week project
All scenarios above are anonymised composites. Names, jurisdictions, timescales, and operational details have been altered or combined across multiple engagements to prevent identification. They are intended to illustrate the nature of advisory work, not to describe any specific client or engagement.

Facing a similar situation?

A confidential initial discussion carries no commitment and no follow-up without your agreement.

Request confidential discussion →