S-RM

SGS S.A. is the world's leading testing, inspection, and certification company, operating across 115 countries with over 99,500 employees and 2,500 laboratories and business facilities. Founded in 1878 as a grain inspection house on the docks of Rouen, France, the company has evolved over 145 years into a global infrastructure for verifying product quality, safety, and compliance across virtually every industry. Headquarters moved to Geneva, Switzerland in 1915, where it remains today under CEO Géraldine Picaud. The company's core business spans testing, inspection, and certification services across multiple technical domains including oil and gas, manufacturing, healthcare, technology, and sustainability. SGS positions itself on a brand promise of precision and trust - "when you need to be sure" - built on its Swiss operational standards and deep domain expertise. With operations touching supply chains, manufacturing processes, and regulatory compliance systems worldwide, the company sits at critical infrastructure junctions where security, data integrity, and verification protocols intersect. For cybersecurity professionals, SGS represents scale: 99,500 employees across 115 countries means protecting distributed operations, cross-border data flows, and industrial control systems spanning ports, laboratories, energy infrastructure, and healthcare facilities. The threat model includes everything from supply chain integrity attacks to data manipulation in certification processes, where a compromised inspection result could cascade through global commerce. The company's technical footprint covers both legacy industrial systems from its 19th-century roots and modern technology services, requiring security operations that bridge operational technology and enterprise IT across highly regulated verticals.

RINA is a multinational knowledge-based company that delivers expert solutions for engineering, testing, inspection, and certification across diverse markets worldwide. Founded in 1861 as Registro Italiano Navale (Italian Naval Register), RINA has evolved into a dynamic "business-to-society" company with more than 6,600 professionals working across 70 countries. The organization supports clients in staying ahead of changes and growing sustainably by leveraging deep technical expertise across Energy, Marine, Infrastructure, Transportation, Construction, and Technology sectors. With a 160+ year heritage rooted in maritime classification, RINA has transformed into a global leader that provides comprehensive services including certification, ship classification, inspection, testing, engineering, design, project management, and management consulting. The company combines technical excellence with a commitment to sustainability, helping clients address complex challenges while adhering to quality standards and safety requirements. RINA's multicultural teams work hand in hand with customers to develop creative solutions that drive innovation and build sustainable values for future generations.

SNC-Lavalin, now operating as AtkinsRéalis, is a global engineering and construction company founded in 1911 with over a century of infrastructure delivery experience. The company operates across power, nuclear, mining, transportation, and water management sectors, providing engineering services, project management, procurement, construction, and consulting. With a worldwide footprint, the organization has delivered projects ranging from massive hydroelectric installations like the James Bay hydro project to cutting-edge nuclear technology deployments. The technical scope spans nuclear expertise, sustainable transportation design, clean energy solutions, power systems, mining infrastructure, water management, and hydroelectric project delivery. The company's service model integrates data and technology across the engineering lifecycle - from initial design and consulting through procurement and construction - positioning it at the intersection of traditional infrastructure engineering and modern systems integration. This convergence of operational technology, critical infrastructure, and data systems creates a significant attack surface requiring sophisticated security architecture. For cybersecurity professionals, the threat model is substantial: nuclear facilities represent critical national infrastructure with stringent regulatory requirements; power systems and hydroelectric projects require industrial control system (ICS) security and SCADA protection; mining operations involve remote site connectivity and supply chain vulnerabilities; and transportation networks increasingly depend on connected systems. The company's global consulting and project management operations mean securing data flows across jurisdictions, protecting engineering intellectual property, and managing third-party risk across complex procurement chains. Led by CEO Ian L. Edwards and headquartered in Canada, the organization's scale and sector diversity demand security practitioners who understand both IT and OT environments, regulatory compliance frameworks, and the operational realities of protecting infrastructure that serves communities for generations.

We're the world's leading provider of secure financial messaging services, and we've been at this for nearly five decades. Headquartered in Belgium, we're a global member-owned cooperative that connects more than 12,000 banks and financial institutions across 200+ countries and territories. When money needs to move around the world, our infrastructure is what makes it happen - securely, reliably, and at scale. What makes us different is that we were built by the financial community, for the financial community. We don't just provide technology - we're the trusted backbone that the global economy relies on every day. Our team works on complex challenges that keep the world's financial system running, from cybersecurity to real-time transaction processing. We're constantly evolving, testing new solutions thoroughly, and implementing them quickly to stay ahead of what the world needs.

At S&P Global, we believe in the power of Essential Intelligence to drive the world's most important decisions. Our team of 42,000+ professionals spans 35 countries, united by a commitment to providing trusted data, expertise, and technology that enable businesses, governments, and individuals to make decisions with conviction. We operate at the intersection of data analytics, financial intelligence, and sustainable insights - shaping how capital markets function, how commodities are traded, and how companies navigate the transition to a more sustainable future. Our culture is built on intellectual curiosity, analytical rigor, and collaborative problem-solving. Whether you're a credit ratings analyst evaluating sovereign risk, a data scientist developing predictive models, or an expert tracking energy markets, you're part of a team that thrives on complexity and values diverse perspectives. We've been remote-flexible since before it became a necessity, believing that great work happens when people have the autonomy to do their best work wherever they are. We invest heavily in our people's growth through continuous learning opportunities, mentorship programs, and clear pathways for advancement - because we know our most valuable asset is the talent and dedication of our colleagues.

S&W is a 143-year-old UK and Ireland accountancy firm now operating in sectors where digital risk is material: fintech, technology, renewables, and real estate. Among its traditional tax, assurance, and M&A advisory work, the firm lists "systems security" as a discrete service line - a signal that client infrastructure hygiene has become part of the scope. The threat model here isn't espionage or APTs; it's operational continuity for mid-market businesses whose finance systems, data pipelines, and third-party integrations have expanded faster than their security posture. The firm's client base includes finance and fintech companies, where regulatory scrutiny around data protection and transaction integrity is tightening, and technology companies navigating growth, acquisitions, and overseas expansion - all phases where security debt tends to surface. S&W's approach appears to bundle security considerations into broader operational optimization and technology enablement engagements, rather than positioning them as standalone projects. That suggests the security work is scoped around compliance frameworks, vendor assessments, and control mapping rather than red team exercises or incident response. For security practitioners, this likely means advising on governance structures, risk frameworks, and system hardening in environments where the IT function is lean and security is still owned by finance or operations. The work sits at the intersection of audit requirements and practical implementation - less about building a SOC, more about ensuring the controls documented for auditors actually exist and function. S&W serves clients throughout their lifecycle, including capital raises and M&A, where security due diligence and remediation timelines directly affect deal terms.