Field manuals for security, risk & continuity

Security decisions you can defend in front of the board.

Editable toolkits, a practitioner-taught masterclass, and free starters — built from 22+ years running security, investigations and crisis response in the field. Structured around ISO 31000 and ISO 22301.

22+ years field leadership Senior Fraud & Security Investigator — U.S. Embassy Cairo UN field mission — operations Destination security — Red Sea Published security author

Start here — free

Section 01 · Field starters

Each starter is the working manual version of a full toolkit: five pages, genuinely usable on its own, instant download. Take the one that matches your problem.

Risk Assessment Starter cover
RRR-FS-01

Risk Assessment StarterFREE

The 5-step method · scoring scales · a worked example you can copy.

Get it free
Corporate Investigation Quick-Start cover
RRR-FS-02

Corporate Investigation Quick-StartFREE

The 6-step process · one-page incident report · interview checklist.

Get it free
Business Continuity Quick-Start cover
RRR-FS-03

Business Continuity Quick-StartFREE

One-page BIA · MTPD, RTO and RPO explained · crisis-team roles.

Get it free

The toolkits

Section 02 · Editable Word & Excel

Complete working systems — registers, scoring, plans and report templates — with worked examples throughout. Buy once, use across your organisation.

Security and Operational Risk Assessment Toolkit cover
RRR-TK-01 · ISO 31000

Security & Operational Risk Assessment Toolkit

Excel register with automatic scoring, live heatmap and dashboard · methodology guide · executive report template.

Risk and Investigation Bundle cover
RRR-TK-02 · Bundle

Risk + Investigation Bundle

The full risk toolkit, plus investigation, interview and incident report templates with a case tracker and evidence & chain-of-custody log.

Business Continuity and Crisis Management Toolkit cover
RRR-TK-03 · ISO 22301

Business Continuity & Crisis Management Toolkit

Automated business impact analysis workbook · continuity strategies · crisis action log · ready-to-complete crisis management plan.

Licence

Team & Consultant Licence — $399

The risk assessment toolkit licensed for your whole team, including use on client engagements.

View licence

The toolkit library

Section 03 · Catalogue

A growing library of practitioner toolkits across four domains. Items marked Available ship today; the remainder are in active development and release in sequence — each built to the same field-tested standard, not padded to fill a list.

Corporate Security

  • Security Risk Assessment ToolkitAvailable · $149
  • Crisis Management ToolkitIn BC toolkit
  • Corporate Security Policy PackIn development
  • Security Audit ToolkitIn development
  • Security Survey ToolkitIn development
  • Incident Management ToolkitIn development
  • Emergency Response ToolkitIn development
  • Travel Security ToolkitIn development

Investigations

Business Continuity

Executive

  • Board Security DashboardIn development
  • Security KPI LibraryIn development
  • Monthly Security Report PackIn development
  • Annual Security ReportIn development

Available now: the Risk Assessment Toolkit, the Business Continuity & Crisis Management Toolkit, and the Risk + Investigation Bundle. New toolkits are released regularly — the fastest way to hear first is a free starter above.

The Masterclass

Section 04 · Online course
Security and Operational Risk Assessment Masterclass cover

Security & Operational Risk Assessment Masterclass. The complete method behind the toolkit: plan, score and present a risk assessment leadership acts on — taught the way it is done in the field, not the way it is written in textbooks.

  • Format9 video modules · 51 minutes of focused instruction · no filler
  • PracticeAn exercise every module, plus a full capstone assessment of your own site
  • OutcomeA populated register, heatmap, treatment plan and executive report — and a certificate of completion

Essentials

$197

The full course and all worksheets.

Recommended

Complete

$297

The course plus the complete Risk Assessment Toolkit — the tool used in every exercise.

Pro

$497

Everything in Complete, plus the Investigation and Continuity toolkits and Q&A feedback on one of your assessments.

Why these tools hold up

Section 05 · The method
Principle 01

Score twice

Inherent and residual. The movement between the two numbers is the evidence your controls earn their cost — and the argument that wins budget.

Principle 02

Cause — event — consequence

Every risk is written so it can be scored, owned and fixed. “Theft risk” is a category; a risk statement names the weakness to close.

Principle 03

Owner, action, date

Nothing counts until a named person has signed for it. Registers die of vagueness; these are built to be answered for.

Field notes

Section 06 · Insights

Practical notes on risk, investigations and continuity — the same thinking behind the toolkits. New pieces publish on LinkedIn first.

Risk

Score every risk twice

Most security risk assessments fail for one reason: they are scored once. A single score tells you a risk is “medium” and nothing else. It hides the one thing leadership needs to see — whether your controls are doing anything.

Score every risk twice. Inherent: the exposure with no controls in place. Residual: what remains with your current controls working. The gap between the two numbers is the entire argument for your budget.

A risk that drops from 20 to 6 proves the spending works. A risk that barely moves tells you where to look next. Score once, and that story is invisible — which is why many managers lose the funding conversation before it starts.

When you present risk to leadership, how do you show them your controls are earning their cost?

Continue the discussion on LinkedIn →
Investigations

An investigation is lost in the first hour

An investigation is usually lost in the first hour, not in the final report. The early mistakes are consistent: evidence handled before it is secured, an outcome decided before the facts are in, notes written from memory days later, opinion recorded where fact belonged.

None of these are knowledge problems. They are discipline problems — and discipline is what holds up when a case is challenged months later by people who were not there.

The remedy is a repeatable process: assess and plan, preserve evidence, gather, interview, reach fact-based findings, then report. The same six steps whether the matter is fraud, theft or misconduct.

What is the earliest mistake you have seen compromise an investigation?

Continue on LinkedIn →
Continuity

“We have a plan” is a dangerous sentence

“We have a plan” is one of the most dangerous sentences in business continuity. A plan nobody has tested is a document, not a capability.

The most common flaw is quiet but decisive: a recovery target set longer than the disruption the business can survive. Two numbers decide it — the maximum tolerable period of disruption, and the recovery time objective. If the recovery target equals or exceeds the tolerable period, the plan fails on paper before anything goes wrong.

Recovery objectives must sit inside what the business can absorb, with margin. Test them before you need them.

When did you last test your continuity plan, rather than file it?

Continue on LinkedIn →

Built by Mostafa Abdeltawab

Section 07 · About
Mostafa Abdeltawab, founder of Resolute Risk & Resilience
Mostafa Abdeltawab · Founder

A security and risk leader with more than 22 years across corporate security, criminal investigations, fraud examination and crisis management — including service as a Senior Fraud & Security Investigator at the U.S. Embassy in Cairo, operations and strategic planning on a United Nations field mission, and leadership of destination-wide security and incident command at a major Red Sea destination.

Every template, checklist and lesson here is the working method from that career — written down, structured around ISO 31000 and ISO 22301 terminology, and stripped of theory that does not survive contact with a real operation.

Corporate security Criminal investigations Fraud examination Crisis management Business continuity

Published guides

Author page on Amazon ↗
BK-01

Layered Defense: Physical Security & Loss Prevention Playbook

Physical protection and loss prevention, built in layers.

BK-02

Professional Report Writing

Reports that hold up — structure, evidence and findings.

BK-03

A Guide to OSINT-Driven Security Strategy

Open-source intelligence applied to security decisions.