top of page

Meet our Trusted Partner - Principle Defence

Our Trusted Partners are an integral part of the ECRC, being able to accredit cyber essentials. But here is a little more information about the people behind the partner.

Photo of Jim Wright
Jim Wright - Managing Director

Tell me who you are and what you do within Principle Defence.

I am Jim Wright, Managing Director of Principle Defence.

Principle Defence is an information security and data privacy consultancy and training provider.

How did you get into cyber resilience?

Coming from a Military background, I've always planned for and managed contingency scenarios. Whenever we planned for something, we used the PACE mnemonic (Primary, Alternate, Contingency, Emergency) and always had different response plans available. When I left the Army I moved into Cyber Security and brought those skills and experiences with me, I now use these techniques to help companies prepare for and manage the risks they face in their businesses.

What’s the best thing about working at Principle Defence?

We're committed to reducing companies' risks through effective risk management, which drives us. We're also keen trainers who enjoy passing on our knowledge. Both of these align with my personal 'why' (Simon Sinek), so it's great to do something you enjoy every day.

What size companies do you work with?

We work with companies of all sizes; we can stretch and contract to meet most engagements.

What do you see small/medium companies struggling with in terms of cyber resilience?

Small/Medium companies struggle with a lack of resources and skills, especially when these are spread too thin. Effective risk management can help these companies manage their risks appropriately.

Why should companies get Cyber Essentials accreditation?

There are many benefits to getting Cyber Essentials, including gaining and maintaining stakeholder trust, protection against the most common cyber-attacks, and certification, which can help companies win new business.

What three tips would you give a company with little knowledge of cyber resilience?

Look at the available free resources (NCSC, Cyber Resilience Centres, central and local government risk registers), develop a plan and try it out; learn through experience and see what does and doesn't work. Reach out to experts as needed.

Montage of starters and desserts

Do you order starters or desserts?


Suppose you have been given an elephant and you can’t give it away or sell it. What would you do with it?

I think I'd have to introduce it to my dog and teach them how to play together!


The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of The Cyber Resilience Centre for the East is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others. Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. The Cyber Resilience Centre for the East provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.

The Cyber Resilience Centre for the East does not accept any responsibility for any loss which may arise from reliance on information or materials published on this document. The Cyber Resilience Centre for the East is not responsible for the content of external internet sites that link to this site or which are linked from it.

bottom of page