Making cyber risk visible
- We turn visibility into action.
- This is why our approach is built as a joined-up maturity framework.
Because cyber risk does not live in one team or one tool. It sits in behaviour, access, governance, suppliers, detection, response planning, and the decisions you make before a crisis ever happens.
When the invisible becomes visible, a different kind of conversation starts. Not “Are we secure?” But “What are our biggest exposures, what’s our next best move, and how do we prove we’re improving?”
- That is where confidence comes from. And that is what Lockdown is built to deliver.
See your cyber risk
Cyber risk rarely arrives with a warning label.
It looks like
normal email, landing when someone is rushed
supplier message that feels routine and familiar
urgent request, signed off with the right name
login prompt that “must be the new system”
phone call that sounds calm, helpful, and credible
something small, then spreads quietly through trust
moves through inboxes, shared drives, and cloud accounts
doesn’t feel like a breach, until it’s already too late
- That is the problem with cyber risk: most of it is invisible while it is building.
Leaders are expected to make decisions in the dark. They get dashboards full of technical language, long lists of controls, and contradictory opinions from different vendors. At the same time, pressure is rising from customers, regulators, boards and insurers. Everyone wants reassurance. Few can explain, in plain business terms, what truly matters right now.
- Lockdown Cyber Security was created for that exact moment.
A boutique cyber security concierge
Lockdown is a cyber security concierge with a strong partner network of global experts, products and services. We are agile, scaling the right expertise when needed rather than being restricted by in-house capacity.
We start with your problem statement, not a list of services. We qualify needs, match options to budget and context, and give honest guidance on what will reduce risk fastest. No scare tactics or fear-selling, just clear priorities, delivery that works in the real world, and outcomes your organisation can evidence.
Trusted by:
- Chartered Accountants in England and Wales (ICAEW) training partner
- Chartered Accountants Ireland training partner
The Cyber Maturity Framework
Most organisations don’t need more cyber noise. They need a clear way to see what matters, prioritise improvements, and prove progress over time.
Lockdown’s Cyber Maturity Framework is our practical model for doing exactly that. It brings cyber security and cyber resilience together in a joined-up way, so you can move from reactive fixes to a roadmap that leadership teams can understand, fund, and govern.
Instead of treating cyber as a single “IT project”, the framework helps you strengthen the eight areas that most influence real-world risk.
What makes the framework different is that it is designed to be usable, not theoretical. It helps you answer the questions leaders actually ask:
- Where are we exposed right now?
- What should we fix first?
- What will reduce risk the fastest?
- What evidence do we need for customers, regulators and insurers?
- How do we keep improving without turning this into an endless programme?
Key Stakeholders
Mike Allen, Chairman
Mike has over 30 years’ experience in leadership positions, transforming blue chip and mid-market businesses.
Mike Started his career with Cadbury’s chocolate, where he held a number of positions within operational and commercial roles. He then joined Camelot group, and as part of their original bid team who would successfully win a contract to establish the UK National Lottery, a great success within the UK and for Camelot as an organisation.
In 2011 Mike became the Managing Director of RM, the leading provider of IT solutions within the education sector. Mike was brought into HR Health & Safety firm Croner, and under his leadership, turned the firm profitable and led the trade sale to Peninsula group, who acquired the organisation. A born entrepreneur, Mike has successfully led two of his own ventures and has an excellent track record of developing strong, market-focused organisations, with a particular emphasis on growth, authentic leadership and delivering change.
Having been part of Lockdown since 2022, in 2024 Mike accepted the role of Chairman of Lockdown Cyber Security with a mission of helping the company grow and scale its operation. Lockdown are delighted to have a leader of Mike’s wisdom, calibre and strong human qualities.
Karen Morrall, CEO & Co-Founder
Karen Morrall is the CEO and Co-Founder of Lockdown Cyber Security.
Beginning her career at EY in 1991, Karen would qualify as a chartered accountant during her time with the firm and would go on to manage a portfolio of 26 clients, within her role as an auditor.
Karen has worked in numerous global Enterprise level and many SME businesses upon leaving EY in 1998. An experienced Finance Director within the IT, service sector and M&A activity. Often cited for her creativity and ingenuity, Karen holds a natural interest in innovation through technology, a quality which led her to start Lockdown Cyber Security alongside William Taaffe in 2019, helping to see Cyber Security through a different lens, the lens of business.
As a passionate Finance and Cyber Security expert, Karen has helped establish Lockdown Cyber Security as a premier brand, working with SME and large enterprise groups globally.
William Taaffe, COO & Co-Founder
William is COO & Co-Founder of Lockdown Cyber Security.
Beginning his professional career in 2008, William held a variety of business development roles for Hobs Reprographics, then the largest independent reprographics business in the UK. William was promoted to be the Business Development Manager of one of Hobs flagship sites for its scanning and OCR operation and held Key Account Manager roles at the business.
William then moved into technology, where he re-entered the world of IT in 2014 with RDS Global. Later that year, William would help establish and lead the companies Cyber Security services division, an area of interest for William since childhood.
Previously holding a sales director position, William Co-Founded Lockdown Cyber Security in 2019 with CEO Karen Morrall. Passionate and charismatic, William leads Lockdown’s operations, training and is a regular speaker of keynote presentations for a number of industries. Highly regarded as an industry thought leader, William has had articles published in major UK newspapers and is a well-known personality within the UK Cyber Security sector.
Ian Dyson, Non-Executive Director
Ian retired in 2022 from a 38-year career in policing, the last 6 as the Commissioner of the City of London police. In that role he was the National Police lead for Fraud, Economic Crime, Cyber Crime, Financial Investigation, and Business Crime. He was also the National Police lead on Technology and Information Management, and for 6 years was the National Police Senior Information Risk Owner (SIRO). He is now trustee of a number of charities and sits as a NED or Advisor to a number of companies in the crime, tech or cyber security sectors. He was awarded the Queen’s Police Medal in 2016, is a Distinguished Fellow of the Royal United Services Institute (RUSI) and in 2022 became a Deputy Lieutenant (DL) for Greater London.
Ian is the Chair of the Chartered Security Professionals Registration Authority, a trustee of the Worshipful Company of Security professionals and board member of the Global Cyber Alliance.
As a Lockdown Non-Executive Director Ian advises around Cyber Fraud, Public Sector and Law Enforcement, key components of Lockdown Cyber Securities strategy.
