Red Helix names Simon Michie to lead Risk Crew unit

Red Helix has appointed Simon Michie as Managing Director of Risk Crew, the group's consultancy focused on information security governance, risk and compliance.

Risk Crew operates as a specialist unit within Red Helix, advising organisations on cyber risk management, compliance and security testing. Michie takes on the role as regulators, customers and boards increase scrutiny of businesses' security posture.

The appointment follows Red Helix's acquisition of Risk Crew in 2025. Red Helix says the combined offering covers more of the security lifecycle, from risk assessment and resilience planning to managed protection, monitoring and incident response.

Michie has more than three decades of experience across digital infrastructure, cloud and managed services, with a background in product and technology leadership focused on building and scaling technology-led businesses.

Before joining Risk Crew, he served as Chief Technology Officer at Pulsant, where he led development of the company's edge computing platform and oversaw changes to underlying technology platforms across 12 data centres.

He previously spent eight years at Redcentric as Chief Technology Officer, with operating board responsibility for product strategy and the technology roadmap. His career also includes co-founding private businesses later sold in trade sales. Red Helix also highlighted his experience working with PLC and private equity boards on growth, integration and exit planning.

Growth Plans

Risk Crew advises on governance, risk and compliance programmes and carries out security testing. Red Helix describes the unit as a centre of expertise within the wider group, with Michie tasked with leading the next phase of growth and meeting rising demand for what it calls cyber assurance.

Marion Stewart, Chief Executive Officer at Red Helix, said Michie's mix of technical and commercial experience will support the expansion of the group's risk and assurance work.

"Simon brings a fantastic combination of deep technical expertise, commercial acumen and leadership experience. Risk Crew plays a critical role in our ability to deliver complete cyber assurance, and Simon's background in scaling complex technology businesses makes him ideally placed to lead the business into this next phase," said Marion Stewart, CEO, Red Helix.

Michie said organisations face a changing risk environment, pointing to geopolitical uncertainty, advances in AI and tighter regulation as factors shaping security and compliance priorities.

"Risk Crew has built a strong reputation for bringing clarity and rigour to the complexities of cyber risk and compliance. As geopolitical uncertainty, rapid advances in AI, and increasing regulation reshape the digital landscape, organisations need practical support to turn risk into resilience and compliance into competitive advantage.

"As part of Red Helix, we have a unique opportunity to combine our specialist expertise with broader scale, and I'm excited to lead such a talented team through this next stage of growth," said Michie.

Service Scope

Red Helix describes itself as a cyber security partner with expertise spanning cyber security services, networks and risk. It says it has more than 40 years of experience and works across risk appetite assessment, strategy design, programme execution and ongoing validation through testing.

Risk Crew's consultancy sits alongside other parts of the group delivering operational security services. Red Helix says its services include governance, risk and compliance support, penetration testing, security awareness and policy development, as well as 24/7/365 threat monitoring, incident response and network optimisation.

Red Helix says clients can use a single supplier across multiple security needs. It describes its approach as vendor-agnostic and aimed at simplifying security supply chains.

Headquartered in Buckinghamshire, Red Helix says Michie will lead Risk Crew as the group integrates continuous assessment and penetration testing with managed protection, detection and response.