Let's build a safer future
Forbes Asset Management, Inc. offers strategic consulting and executive advisory services with extensive expertise to help you navigate complexity and achieve sustainable success.
About Us
Our strength lies in the deep, real-world experience of our team. Our executive staff have held positions in diverse and demanding environments:
Indepth Industry Experience
- U.S. Federal Regulatory Agencies
- Globally Systemically Important Banks (GSIB)
- International Financial Services, Asset Management, and Insurance Companies
- HighTech, FinTech, Payment Tech, Digital Banks, Algorithmic Trading, and Internet Startups
- Department of Defense (DoD) and Defense Industrial Base (DIB)
- U.S. Military
Proven Leadership Skills
- Chief Information Officers (CIOs)
- Chief Technology Officers (CTOs)
- Chief Information Security Officers (CISO)
- Chief Risk Officers (CROs)
- Chief Privacy Officers (CPOs)
- Chief Data Officers (CDOs)
- Enterprise Architects
- Principle Software Designer/Developer
Advisory Domains
We provide comprehensive advisory services and intellectual property across ten primary domains to address your most critical business challenges:
Strategy & Organizational Management System (SOMS)
SOMS provides a comprehensive and robust framework for all management activities, increases consistency and quality across departments, improves staff development and retention, and provides the structure for measuring individual and team performance.
Business Process Requirements Management (BPRM)
BPRM integrates industry frameworks and standards such as REPAC, OCEB, and Value Chain Group's VRM to align strategic objectives with operational execution, unifying integration, Process, and Human-centric workflows for horizontal and vertical optimization.
Business Continuity and Disaster Recovery (BCDR)
BCDR unifies ISO 22301, NIST SP 800-34, and BCI Good Practice Guidelines to deliver comprehensive strategies and solutions for business continuity planning, operational resilience, disaster recovery, and crisis management through risk assessments, failure scenarios, and contingency analysis.
Data Governance Management Program (DGMP)
DGMP harmonizes frameworks like DMBOK, DGI, Digital Rights Management, and Data Lifecycles for comprehensive strategies and solutions covering policies, governance, data sourcing, data quality, data protection, privacy, and contractual obligations.
Information Technology Management Program (ITMP)
ITMP rationalizes the technology ecosystem through enterprise architecture, infrastructure design, operational effectiveness, service delivery optimization, internal v. external processing, buy v. build, maintenance, resource allocation, monitoring, incident response, and root-cause analysis.
Information Security Management Program (ISMP)
ISMP safeguards assets through frameworks NIST, CIS, ISO, CSA, and ENISA for threat modeling, risk assessments, threat intelligence, regulatory compliance, enterprise security architectures, layered defense-in-depth, controls management, data security, and user management.
Technology Risk Management Program (TRMP)
TRMP leverages ISACA COBIT 2019 and ITIL frameworks for comprehensive technology governance of critical vulnerabilities, supply chain risks, data center failures, disaster recovery, technology sourcing challenges, application development flaws, insider threats, systematic control management, and testing.
Supply Chain & Third Party Risk (TPRM)
TPRM builds comprehensive governance across your supply chain, third parties, vendors, and external business partners to address critical risks from supply disruptions, vendor performance failures, credit and currency exposures, software vulnerabilities, regulatory violations, and intellectual property theft.
Application Development Risk Management (ADRM)
ADRM utilizes frameworks like OWASP and Cloud Security Alliance to govern application development risk through threat modeling, open source vulnerabilities, malicious code, broken dependencies, fragile CI/CD pipelines, secure coding practices, automated testing strategies (static, dynamic, runtime), and integrated DevSecOps.
Artificial Intelligence Risk Management (AIRM)
AIRM scaffolds frameworks like NIST AI RMF, CSA AI, MITRE, and ISO to govern your artificial intelligence ecosystem against AI coding flaws, data poisoning attacks, AI agent hijacking, model selection flaws, and intellectual property disputes through robust risk assessments, security controls, and continuous monitoring.
Transformational Deliverables
We solve real-world challenges, expand organizational capabilities, improve operational effectiveness, and increase efficiency.
Strategic Planning & Multiyear Roadmaps (SPMR)
Our Strategic Plan and Multiyear Roadmaps (SPMR) clearly outline your organization's management journey, aligning goals with actionable steps and timelines and giving executives and board members full transparency into priorities, risks, and needed investments.
Target Operating Models Structure (TOMS)
Our Target Operating Model Structure (TOMS) evaluates multiple scenarios for optimizing workflows, staffing, and external partnerships, using business process reengineering to resolve strategic gaps, improve agility and competitiveness, and adapt to evolving market demands.
Governance, Risk, and Compliance System (GRCS)
Our Governance, Risk, and Compliance System (GRCS) integrates comprehensive oversight, robust governance, rigorous controls testing, and regulatory compliance while simplifying processes, enhancing transparency, and improving risk understanding and decision-making confidence.
Operational Excellence & Financial Efficiency (OEFE)
Our Operational Excellence & Financial Efficiency (OEFE) deliverable provides executives with clear insights into production metrics, cost efficiency, resource utilization, alternative opportunities, and quality performance, enabling informed strategic decisions to enhance productivity, profitability, and quality.
Enterprise Architecture and Systems Design (EASD)
Our Enterprise Architecture and Systems Design (EASD) deliverable provides a cohesive blueprint that visually aligns and organizes technology assets, data flows, business processes, critical partners, customers, and stakeholders, which enhances operational agility, reduces technology risks, and enables strategic clarity.
Transformation Initiatives & Change Management (TICM)
Our Transformation Initiatives & Change Management (TICM) roadmap defines the optimal transition strategy for migrating from the legacy environment to the ideal future state, prioritizing initiatives, managing risks, and proactively engaging stakeholders.
Threat Modeling & Risk Management (TMRM)
Our Threat Modeling & Risk Management (TMRM) deliverable comprehensively and systematically assesses all critical threats and vulnerabilities tied to key business processes, technologies, systems, applications, and data exchanges, highlighting exposures and value-at-risk across multiple incident scenarios.
Controls Design and Test Management (CDTM)
Our Controls Design and Test Management (CDTM) deliverable provides a rigorous, end-to-end analysis of key controls, design specifications, operating instructions, systematic test procedures, and threshold responses to ensure business objectives, satisfy regulatory compliance, and mitigate risks to acceptable levels.
Incident Response and Crises Management (IRCM)
Our Incident Response and Crisis Management (IRCM) deliverable documents and streamlines the complete incident lifecycle, including detection, monitoring, response playbooks, and crisis protocols, enabling quick decision-making, reduced downtime, and improved resilience.
Monitoring Observability and Performance Reporting (MOPR)
Our Monitoring Observability and Performance Reporting (MOPR) deliverable identifies, documents, and rationalizes key metrics, including Key Performance Indicators (KPIs), Key Risk Indicators (KRIs), critical process instrumentation, and aggregate performance ratings, to identify emerging risks, and make informed, data-driven decisions.
Delivering Tangible Value
Forbes Asset Management has consistently delivered exceptional value and tangible outcomes to our clients:
Attack Risk Reduction
Proactively identified and effectively closed cybersecurity and information security vulnerabilities, significantly reducing organizational risk exposure.
Attack Recovery Acceleration
Conducted thorough Root-Cause Analyses (RCA) and produced comprehensive evidentiary documentation post-breach, enabling swift recovery and regulatory compliance.
Organizational Efficiency Optimization
Consolidated fragmented legacy practices into cohesive, streamlined, and efficient central processes, reducing complexity and improving clarity.
Operational Effectiveness Enhancement
Evaluated and rationalized existing tools and practices to eliminate redundancies, reduce unnecessary expenses, and phase out ineffective technologies, resulting in cost savings and increased operational agility.
Productivity Improvement
Enhanced organizational capability maturity and strengthened staff competencies, resulting in measurable productivity improvements, fewer errors, and reduced rework.
Resource Supplementation
Provided specialized expertise and additional resources to effectively support clients during complex business transformations.
Audit & Examination Preparation
Built robust processes and documentation frameworks to navigate internal audits and external regulatory examinations successfully, ensuring smooth compliance experiences.
Audit & Examination Remediation
Designed and implemented targeted uplift projects to address audit findings, regulatory challenges, and operational deficiencies effectively and sustainably.
Increased Stakeholder Confidence
Enhanced organizational credibility by demonstrating rigorous security posture, robust governance, and proactive risk management practices, increasing stakeholder trust.
Expanded Shareholder and Investor Certainty
Delivered consistent risk management performance and transparent reporting, providing clarity and assurance to shareholders and investors about long-term stability and governance excellence.
What Sets Us Apart
We operate differently from traditional consultancies, offering unique advantages:
Expert-Led Service Delivery
Our consultancy distinguishes itself through an unwavering commitment to delivering experienced industry experts, guaranteeing that every engagement is powered by deep, practical knowledge. We provide a robust array of service delivery options, including staff augmentation, fixed-price engagements, shared service models across multiple clients, structured subscription-based services, on-demand (ad hoc) solutions, contingency plans, vendor-sponsored initiatives, and fully managed service arrangements. This exceptional flexibility empowers us to tailor our services specifically to meet the precise needs of our clients.
Customized Intellectual Property Development
We set ourselves apart by our ability to develop customized software platforms that can be used exclusively or collaboratively. These platforms are designed to host, manage, and administer intellectual property. Our approach guarantees secure, tailored solutions that integrate smoothly into our clients' operations, enhancing their innovation and efficiency.
Proactive Investment in Intellectual Capital
Our approach differs from traditional consultancies by proactively investing our capital and resources to create and refine innovative intellectual property before we engage with clients commercially. This unique strategy provides our clients with immediate access to state-of-the-art intellectual property at no extra cost, significantly enhancing value and accelerating innovation cycles.
Flexible Intellectual Property Ownership Models
Our consultancy offers unmatched flexibility in intellectual property management by enabling various ownership and distribution models. We can transfer intellectual property rights directly to our clients, dedicate them to the Public Domain, or contribute to Open Source projects, aligning perfectly with clients' strategic, commercial, or community-oriented goals.
Comprehensive Intellectual Property Licensing
We provide a variety of flexible licensing options for our proprietary intellectual property. Clients can incorporate these assets into their internal software platforms, customer-facing products, or commercial offerings. Furthermore, our intellectual property can also be included in publications, helping our clients enhance their market differentiation and establish a strong position in thought leadership.
Specialized and Novel Research Capabilities
We differentiate ourselves through our commitment to conducting specialized and innovative research that is precisely tailored to meet our client's unique needs. Our expert research teams deliver a range of customized materials, from internal documentation to professionally ghostwritten books. This ensures that our clients have the essential information to secure a competitive edge and assert market leadership.
Get in Touch
Ready to discuss your challenges? Contact us today to learn how Forbes Asset Management can help you achieve your strategic goals.
PO Box 1061, Bodega Bay, California, USA 94923
Send Us a Message
© Forbes Asset Management, Inc. All rights reserved.