High-net-worth individuals and companies face a complex array of challenges, but they also have an unprecedented spectrum of solutions at their disposal. From geopolitical instability and regulatory uncertainty to emerging technological threats like deepfakes and “pig butchering” scams, business leaders may feel they’re caught in a relentless, reactive cycle. It’s tempting to invest heavily in sophisticated solutions, sweeping strategies, and fortified defenses—or, failing that, to view these issues as overwhelming. Instead, we recommend implementing highly tailored, layered defenses that align with your unique risk profile, leverage your existing strengths, and provide adaptable frameworks and resources to address the unpredictable.
StoneTurn serves a diverse set of roles within a multidisciplinary advisory team, acting as investigative partners for counsel, geopolitical advisors for private clients, and security strategists for corporate interests. Whether navigating cross-jurisdictional challenges, leveraging local insights, or coordinating teams of cybersecurity, financial, and communications experts, we bring a focused approach to managing risk, reputation, and crises.
Our philosophy is that intelligence informs our ability to mitigate client risks by personalizing the strategy to meet their specific needs. Our method is straightforward: identify the underlying risks beyond the headlines, engage directly with those who hold critical information or influence, and collaborate with clients and partners to create strategic advantages.
Identify Risk
When it comes to identifying and managing risk, it’s best understood through examples. We partnered with a Fortune 500 company to identify geopolitical risks that could impact their business and operations in the coming year. Forecasting threats a year in advance may seem academic, but with limited security resources, companies need to allocate and reinforce their posture proactively. Just as you would not plan sales without a market assessment or operations without a business plan, deploying security resources without a prioritized understanding of key risks—or a forward-looking assessment of global dynamics—leaves your organization exposed. Many clients have shared that they were caught off guard by events like the Russia-Ukraine conflict, COVID-19, and the outcome of elections throughout the world. They want to be less surprised—or at least better prepared.
As the saying goes, “plans are useless, but planning is indispensable.” This rang especially true when we were actively working with a client on their Middle East security posture—and the region erupted in new waves of violence and instability. Flights were cancelled, employees went unaccounted for, and the hypothetical risks we had been preparing contingencies for suddenly became real. Our clients quickly realized two critical lessons: first, you must know all the people, locations, assets, and intellectual property you are responsible for before they are at risk. Second, you do not want to be scrambling for new assistance when a crisis hits—especially when everyone else is as well.
Risk identification does not stop once a crisis hits. After a geopolitical event, the flood of noise and disinformation can make it challenging to extract actionable intelligence. Some clients need to know when it will be safe to resume operations, while others are focused on potential fallout—such as shifts in regulations, sanctions, tariffs, or investment climate.
Engage People
Geopolitical crises, political instability, hostile competition, reputational attacks, and the weaponization of legal and regulatory systems rarely arise out of nowhere; people drive these events. It is critical to identify, understand, and engage with the key players behind each decision to protect and advance interests.
A powerful example of this approach comes from a highly personal case: a high-net-worth public client facing threats from a stalker who was blackmailing them with compromising information. While stalking and blackmail are criminal offenses in most jurisdictions, not all law enforcement agencies have the competence, urgency, or reliability to manage such cases effectively. Additionally, the client may not want to contact law enforcement which could potentially embarrassing information being released by the media. By identifying the stalker and assessing the severity of the compromising material, it made it easier to formulate a strategy to safeguard the high-net-worth individual’s privacy and security alongside attorneys, public relations experts, and law enforcement.
Threats, fraud, cyberattacks, and other risks can often emerge from trusted insiders. As a result, it is essential to vet high-trust hires—such as board members, house staff and caregivers—and vigilance, training, and ongoing assessment are essential long after onboarding. It is crucial to know your people, understand their access, and have clear plans for swift and secure offboarding if necessary.
This does not mean we should operate in a state of paranoia—quite the opposite. A satisfied trusted workforce is a potent defence against insider threats. A positive culture, where employees hold each other accountable and whistleblowers feel safe to report concerns, is one of the most effective ways to mitigate internal risks. High trust cultures also typically attract and retain the best talent and are more innovative and more profitable Engaging front line employees in contingency and scenario planning can also be invaluable. Simulate critical incidents, such as how you would respond if the CEO disappeared for 48 hours or if an AI mimicked the CFO’s voice requesting a wire transfer, so that your employees are trained and ready.
Find Advantage
Traditional private-sector intelligence and investigations often end at identifying risks—but in today’s environment, it must be taken a step further, transforming those risks into opportunities. Our investor clients, from hedge funds and short sellers to activists and private equity firms, recognize the power of this approach. Where others see only risk, our clients see signals that provide a strategic advantage, allowing them to act decisively while others hesitate. This approach is particularly impactful in our transnational work, where we not only support compliance with complex sanctions regimes but also help uncover opportunities within challenging environments.
For instance, we assisted an investor pursuing a manufacturing facility in a complex jurisdiction known for corruption and sanctions issues. By investigating the investment target, consulting with local sources and political insiders, and reviewing semi-public documents, we provided the client with a clear, informed perspective on the opportunity. Similarly, we investigate potential business partners for integrity and reliability, ensuring our clients don not just rely on financial and legal due diligence—and a few friendly meetings—to gauge trustworthiness. Our thorough background investigations aim not only to uncover red flags but also to reveal potential synergies and avenues for collaboration.
Conclusion
Ultimately, there’s no universal formula for security and asset protection, as each client’s risks and assets are unique. Faced with complex security challenges, it can be tempting to either overspend on extreme measures or resign to vulnerability. The right approach strikes a careful practical balance—delivering targeted, effective solutions that protect privacy, mitigate risk, and honor each client’s individual needs and goals.
If you have any questions or would like to find out more about this topic please reach out to Sarah Keeling or Naphtali Rivkin.
To receive StoneTurn Insights, sign up for our newsletter.
