StormFox logoStormFox
Book a callGet started

Take bigger risks.
Take them better.

We build tools that help leaders see the connections between what they are trying to achieve, what threatens it, and what the evidence actually says - then make that picture legible enough to act on with confidence. Not because the black box told them to; because they can see it clearly for themselves.

Work with usRead the manifesto →
01 / Diagnose

Map the real risk surface

Identify the implicit connections between your processes and your goals. Identify missing processes, and cut those that no longer serve a purpose.

02 / Decide

Make the call - and know why you did

A structured method for making consequential decisions when the data is incomplete.

03 / Operate

Build the operating system

Encode policies, controls, and ontologies into software that scales with you.

// The manifesto

Between recklessness and fear, there is judgement.

Read the full manifesto →
The reckless

The reckless move fast - and break the wrong things.

Systemic risks compound until something snaps. It's carelessness masquerading as courage.

The fearful

The fearful punish individuals for problems produced by the system.

When something goes wrong, they search for someone to blame. Process stagnates, innovation stalls. People learn that the safest way is to hide behind policy and compliance - and the company slowly dies of inertia and inaction.

The third path

The solution: Tools that support taking calculated risks.

Map the terrain. Distinguish individual error from systemic exposure. Build the systems that enable bold decisions to be made.

// How we work

Advisory engagements that leave behind a system, not a slide deck.

01

Risk archaeology

We dig through your processes, policies, and data streams to identify the real risks that lead to real consequences.

02

Decision architecture

We build the information structures that put the right information in front of the right person at the right time. Decisions are made on evidence that enhances instinct, and the reasoning behind them is never lost.

03

Encoded controls

We make your policies visible. Structured, navigable models, rather than static, impenetrable documents. Policy ontologies, technical controls and audit trails that are easy to understand, easy to challenge, and easy to extend as your business evolves.

// Platform · in development

An operating system for company-scale judgement.

We're building the tool we wish existed. Feed it your policy documents and it walks you through identifying the symbolic relationships between what's written down and what your company actually does - then helps you encode the controls.

  • Policy → process mapping
  • Internal ontology builder
  • Technical control management
Talk to the team
policy_ontology.yaml
policy: vendor_onboarding
  # what the document says
  asserts:
    - "All vendors must complete diligence"
    - "Risk tier assigned by Legal"
  # what the company actually does
  observed:
    - intake: ad-hoc email
    - tier: assigned by deal owner ⚠
  # gap → control
  gap_controls:
    - require: tier_assignment.role == "legal"
    - block: contract.send unless diligence.passed

You shouldn't have to choose between recklessness and paralysis.

Tell us what you're trying to do and what's stopping you. We'll tell you whether we can help.

Get in touchRead the manifesto