MCS: Growing a Team, a Capability, and a Family

Others deliver and disappear. We stay - to govern, harden, monitor, and evolve - turning frameworks into action, not just checklists.

17/2/26

McCormickCo Security didn’t start as a company with a large team, a product portfolio, or a polished brand. It started with one person, Matt, working shoulder to shoulder with NHS organisations to help them understand cyber risk, meet assurance requirements, and make defensible decisions in environments where patient safety always comes first.

For a long time, clients didn’t just work with McCormickCo Security. They worked with Matt. He was embedded in Trusts, responding to incidents, navigating DSPT submissions, translating technical risk into language boards could act on, and helping teams make sense of an increasingly complex and fast moving threat landscape. The work was personal, hands on, and built on trust.

That foundation still matters. And it still defines who we are.

Passion for the NHS Is a Responsibility

Our work has always been rooted in the NHS. Not as a market, but as a system that matters. The pressure NHS organisations operate under, including clinical risk, resource constraints, and public accountability, means cyber security cannot be theoretical, over engineered, or disconnected from reality.

We care deeply about getting this right. That means understanding how Trusts actually work, respecting the pressures teams are under, and designing solutions that support patient care rather than get in the way of it. Cyber security in the NHS is not about perfection. It is about proportionate, defensible risk decisions made with clarity and honesty.

That mindset shaped the transition from an individual consultant to something more resilient. MCS.

From Individual Expertise to Collective Capability

As the cyber challenges facing NHS organisations grew, it became clear that relying on a single individual was no longer sustainable for clients or for the work itself. Trusts needed consistency, continuity, and capability that could scale without losing context.

MCS was built to do exactly that.

Today, McCormickCo Security is a growing team of cyber professionals, engineers, analysts, and advisors who share deep NHS experience and a common set of values. What was once delivered through individual expertise is now reinforced through collective knowledge, shared processes, and purpose built platforms such as DSPT View.

This means our clients do not just benefit from one person’s experience. They benefit from a team that challenges each other, reviews assumptions, and brings different perspectives to complex problems.

Vetted, Tested, and Challenged

We are deliberate about the solutions we use and recommend. Nothing we deploy is untested, unproven, or selected because it looks good on a slide. Tools and platforms are vetted, challenged, and used in real NHS environments before they ever become part of our offering.

We also work with external partners who actively challenge us technically, commercially, and operationally. This matters. It keeps us honest, prevents tunnel vision, and ensures the solutions we stand behind genuinely deliver value rather than compliance theatre.

If something does not work, we say so. If a risk cannot be eliminated, we help organisations understand it and manage it properly. That transparency is intentional.

Honest, Transparent, and Outcome Focused

Cyber security is full of noise, inflated claims, and uncomfortable truths. At MCS, honesty and transparency are fundamental. We do not downplay risk to keep things comfortable, and we do not oversell solutions to create dependency.

We take personal responsibility for outcomes. That means being open about what is working, what is not, and what needs to change, even when that is challenging. It is why many of our clients describe us as feeling like part of the team rather than an external supplier.

A Family, Not Just a Firm

Internally, we describe MCS as a family. Not as a slogan, but as a reflection of how we operate. We support each other through high pressure incidents, long days, and complex decisions. We share accountability. We care deeply about the impact of our work, both on our clients and on each other.

That culture allows us to build long term partnerships rather than transactional engagements. It is also what allows us to grow without losing the values that mattered at the beginning.

Looking Ahead

The journey from Matt to MCS is not about replacing one with the other. It is about evolution. The experience, values, and NHS first mindset that defined the early days are still at the core of everything we do. The difference now is scale, resilience, and shared ownership.

As cyber threats continue to evolve and NHS digital estates become more complex, MCS will continue to grow carefully and deliberately. We will keep challenging ourselves, our partners, and the status quo, because patient safety, data protection, and trust deserve nothing less.

We are still here to do the work properly.

Not bad for something we were once told couldn’t be done and certainly not alone.

Downloads

Similar Insights

No items found.
Reinforce partnership model and support longevity
Book a Consultation
Book a Consultation