One firm. Every layer. One accountable senior team.
Senior-led security and EHS consulting for organizations facing real threats, regulatory pressure, and operational safety risk, without the cost and delay of building a full-time function.
Clients don't come to Highlander Six because they're curious about risk. They come because something has surfaced (an incident, a near-miss, a regulator letter, an executive feeling) and the next 90 days matter.
Something feels off, but the organization has no defensible assessment.
An employee, termination, or threat concern needs structure before it escalates into an incident, reputational event, or legal exposure.
A citation, complaint, or near-miss exposes weak documentation and readiness.
Logs, programs, and records often break down under scrutiny when no senior owner has hardened the system.
DLP catches the obvious; coercion, collusion, and intent often go unseen.
Clients need behavioral indicators, case intake, and cross-functional response before months of silent loss become a crisis.
EMR, claims patterns, and premiums start hurting growth and bid competitiveness.
Improvement requires more than policy language. It needs claims review, return-to-work design, and behavior-based safety follow-through.
Cameras, access control, and guards exist, but coverage and response logic may be weak.
Clients need validated coverage maps, tested controls, and site-by-site risk comparison rather than vendor assumptions.
Operations cannot pause, but turnover or growth leaves risk uncovered.
Recordables, training, and program ownership continue to matter even while the client is recruiting or restructuring.
A full advisory practice across security, EHS, and the cross-cutting work that lives between them. Every line is delivered by a senior practitioner. Never offshored, never templated.
Most engagements start with Diagnose. Some clients move to Build to close the highest-risk gaps. Others stay with Highlander Six through Operate as their fractional senior security and EHS function.
A scoped, senior-led assessment of where the client stands and what to fix first.
A complete, documented program that the client team can own and operate with confidence.
A fractional senior EHS and security function embedded in the organization for continuity and executive visibility.
| 01 · Diagnose | 02 · Build | 03 · Operate | |
|---|---|---|---|
| Assessment | Physical security & facility assessment. OSHA gap assessment. Workplace violence threat assessment. Insider threat review. | Everything in Diagnose, plus quarterly on-site audits and sector benchmarking. | Everything in Build, plus monthly on-site walkthroughs and an annual board-ready risk review. |
| Programs | Findings report only. No program build. | Program conception, planning, strategy, documentation, and deployment. | All Build programs maintained, plus quality control, workers' comp loss control, and contractor safety oversight. |
| On-site | Typically 1–2 days on site for assessment. | Quarterly on-site visits; training delivered remote or on site. | 1–4 days per month senior on site, plus same-day support for active threats. |
| Incident support | Not included by default; available through scoped response work. | Initial incident response plan and first 30 days of post-program support. | Full incident investigation, root-cause support, on-call threat assessment, and high-risk termination support. |
| Deliverable | Written report, prioritized roadmap, and executive briefing. | Full program documentation, training package, and case-management framework. | Ongoing management cadence, monthly reviews, and quarterly reporting. |
Situation. The client suspected internal fraud was occurring inside the organization but had no defensible way to scope it. A senior consultant team was brought in to validate the suspicion and quantify the exposure.
Engagement. The team uncovered that internal fraud events were occurring at a rate of roughly 20,000 per month. Over a four-month sprint, the consultants ran structured investigations, designed engineering and control improvements, and rebuilt the surrounding process.
Result. Monthly fraud events dropped from approximately 20,000 to fewer than 3. The new control environment held under continued monitoring, and the engineering changes have remained in production since.
No sales representative. No proposal pressure. Just a focused 30-minute discovery conversation to identify the highest-priority gaps, and determine honestly whether Highlander Six is the right fit.