Field manuals for security, risk & continuity

Security decisions you can defend in front of the board.

Editable toolkits, a practitioner-taught masterclass, and free starters — built from 22+ years running security, investigations and crisis response in the field. Structured around ISO 31000 and ISO 22301.

22+ years field leadership Senior Fraud & Security Investigator — U.S. Embassy Cairo UN field mission — operations Destination security — Red Sea Published security author

Start here — free

Section 01 · Field starters

Each starter is the working manual version of a full toolkit: five pages, genuinely usable on its own, instant download. Take the one that matches your problem.

Risk Assessment Starter cover
RRR-FS-01

Risk Assessment StarterFREE

The 5-step method · scoring scales · a worked example you can copy.

Get it free
Corporate Investigation Quick-Start cover
RRR-FS-02

Corporate Investigation Quick-StartFREE

The 6-step process · one-page incident report · interview checklist.

Get it free
Business Continuity Quick-Start cover
RRR-FS-03

Business Continuity Quick-StartFREE

One-page BIA · MTPD, RTO and RPO explained · crisis-team roles.

Get it free

The toolkits

Section 02 · Editable Word & Excel

Complete working systems — registers, scoring, plans and report templates — with worked examples throughout. Buy once, use across your organisation.

Security and Operational Risk Assessment Toolkit cover
RRR-TK-01 · ISO 31000

Security & Operational Risk Assessment Toolkit

Excel register with automatic scoring, live heatmap and dashboard · methodology guide · executive report template.

Risk and Investigation Bundle cover
RRR-TK-02 · Bundle

Risk + Investigation Bundle

The full risk toolkit, plus investigation, interview and incident report templates with a case tracker and evidence & chain-of-custody log.

Business Continuity and Crisis Management Toolkit cover
RRR-TK-03 · ISO 22301

Business Continuity & Crisis Management Toolkit

Automated business impact analysis workbook · continuity strategies · crisis action log · ready-to-complete crisis management plan.

Licence

Team & Consultant Licence — $399

The risk assessment toolkit licensed for your whole team, including use on client engagements.

View licence

The Masterclass

Section 03 · Online course
Security and Operational Risk Assessment Masterclass cover

Security & Operational Risk Assessment Masterclass. The complete method behind the toolkit: plan, score and present a risk assessment leadership acts on — taught the way it is done in the field, not the way it is written in textbooks.

  • Format9 video modules · 51 minutes of focused instruction · no filler
  • PracticeAn exercise every module, plus a full capstone assessment of your own site
  • OutcomeA populated register, heatmap, treatment plan and executive report — and a certificate of completion

Essentials

$197

The full course and all worksheets.

Recommended

Complete

$297

The course plus the complete Risk Assessment Toolkit — the tool used in every exercise.

Pro

$497

Everything in Complete, plus the Investigation and Continuity toolkits and Q&A feedback on one of your assessments.

Why these tools hold up

Section 04 · The method
Principle 01

Score twice

Inherent and residual. The movement between the two numbers is the evidence your controls earn their cost — and the argument that wins budget.

Principle 02

Cause — event — consequence

Every risk is written so it can be scored, owned and fixed. “Theft risk” is a category; a risk statement names the weakness to close.

Principle 03

Owner, action, date

Nothing counts until a named person has signed for it. Registers die of vagueness; these are built to be answered for.

Built by Mostafa Abdeltawab

Section 05 · About

A security and risk leader with more than 22 years across corporate security, criminal investigations, fraud examination and crisis management — including service as a Senior Fraud & Security Investigator at the U.S. Embassy in Cairo, operations and strategic planning on a United Nations field mission, and leadership of destination-wide security and incident command at a major Red Sea destination.

Every template, checklist and lesson here is the working method from that career — written down, structured around ISO 31000 and ISO 22301 terminology, and stripped of theory that does not survive contact with a real operation.

Corporate security Criminal investigations Fraud examination Crisis management Business continuity