Shell
Portal The Shell Audit 05 · Closure
05 Chapter Five

Closure.

The receipts chapter. Every finding, every OFI, every deliverable — laid out with document references and traceable to the live management system. This is the page the close-out visit was built around.

Shell's draft report landed on 5 February 2026. The first Change Management Plan went back the next day. What followed was not a patch job — it was a full rebuild of the Seagull management system with ISO 45001 as the backbone and Shell's findings as the delivery roadmap. Nine weeks later, the numbers tell their own story.

Each block below takes one finding or OFI, restates what Shell asked for in a single line, and lists the deliverables that answered it — with document references you can cross-check against the Document Register in Chapter 07. Where relevant, the finding's entry on the NCR register is also listed for traceability.

Policies
7
17
In the library
Procedures
5
21
Live, approved
Risk Assessments
0
9
144 hazards
BRAGs
0
9
Frontline guides
Registers
0
10
Live trackers
Training courses
0
21
Live on LMS
Documents in register
~30
140+
Cross-referenced
Findings & OFIs
0 / 15
14 / 15
Closed with evidence
Section One · Findings closure

The seven findings, answered

For each finding: what Shell asked for, what we built, and where the evidence lives. Document references follow the integrated management system's SM/[System]/[Type]/[Seq] format.

01
Finding F1 · NCR-001

License to Operate — Malta exemption

Shell asked for: written confirmation from a competent Maltese government body specifying the company's exemption status from S.L. 480.05 and the Arms Act.

External · In escalation
What we've done · where it sits
  • Formal request lodged with the Malta Security Service via company secretary
  • Chaser correspondence issued through legal counsel
  • Escalation email sent to ownership routing 9 April 2026
  • Placeholder entry maintained on the DD portal pending letter receipt
  • NCR-001 retained as open on the register for full transparency
  • Target: letter received and filed before 3 May close-out

The one finding that sits outside Seagull's direct control. The Malta authority is the single point of dependency. Every other action within Seagull's control has been taken and the escalation remains live.

02
Finding F2 · NCR-002

Risk Management System

Shell asked for: a unified organisation-wide risk management framework covering WAF and IOR, integrating HSSE, documented in SOPs, ISO 45001-aligned.

Closed · Evidence complete
What we built · document refs
  • SM/HSE/PRO/001 Hazard ID & Risk Assessment Procedure
  • SM/SEC/PRO/001 Security & Business Risk Assessment Procedure
  • SM/HSE/RA/002–010 Nine H&S Risk Assessments (144 hazards)
  • SM/CAM/BRAG/001–009 Nine Basic Risk Assessment Guides
  • SM/INT/DOC/003 Risk Screening Tool — interactive gateway
  • Full ISO 45001 policy suite and management system integration
  • Libero ISO 45001 Stage 2 on-site audit confirmed for 21 April 2026
  • Cross-theatre coverage — IOR, WAF, office, operational

This was the rebuild. Nine H&S risk assessments, nine BRAGs, two risk procedures, the Risk Screening Tool, and ISO 45001 as the backbone of the management system — all delivered inside nine weeks. The framework is live across every operational theatre and every Seagull entity.

03
Finding F3 · NCR-003

Media & Social Media Policy

Shell asked for: a formal media and social media policy covering office and operational staff, communicated company-wide and reinforced through training.

Closed · Evidence complete
What we built · document refs
  • SM/INT/POL/008 Social Media Policy v1.0
  • CEO & Group Compliance Director signed approval
  • VPSHR, ICoCA and Montreux references integrated
  • Published to the DD Portal policy library
  • LMS course C16 — Social Media Policy Awareness (live)
  • Onboarding incorporation via SM/INT/FORM/002 New Starter Checklist

Closed with both the policy document and the delivery mechanism — the policy itself plus an LMS course assigned as mandatory training across office and operational staff.

04
Finding F4 · NCR-004

Personal Insurance — Correct Legal Entity

Shell asked for: all personal insurance documentation updated to reflect the correct legal entity (Seagull Malta) and communicated accordingly.

Closed · Evidence complete
What we built · evidence
  • Request issued to underwriters — 20 January 2026
  • Corrected personal insurance policy received — Seagull Malta entity
  • Evidence provided to Shell — 6 February 2026
  • DD Portal Company Structure folder updated
  • Internal document register updated with corrected policy reference

First finding closed. Straight administrative correction, evidenced and lodged within two weeks of the draft report landing.

05
Finding F5 · NCR-005

Nigerian Navy MOU

Shell asked for: a formalised and validated MOU with the Nigerian Navy authorising maritime security operations in Nigerian waters.

Closed · Evidence complete
What we built · evidence
  • Endorsed Nigerian Navy MOU — July 2025 edition obtained and filed
  • Full executive summary and scope note prepared
  • MOU provided to Shell — 6 February 2026
  • Added to the WAF DD Portal (Section C · Host Nation Force)
  • WAF operations team training review against MOU requirements
  • Ongoing MOU-specific training component tracked on the CWP

The MOU underpins Seagull's legitimacy for armed operations in Nigerian waters. Closed with the document itself, the training review, and the operational readout into WAF ops.

06
Finding F6 · NCR-006

VPSHR Adoption

Shell asked for: VPSHR explicitly incorporated into procedures, training materials and use-of-force guidelines, with awareness sessions across office and deployed personnel.

Closed · Evidence complete
What we built · document refs
  • VPSHR integration across the policy library — 17 policies touched
  • SM/OPS/PRO/001 Rules on the Use of Force — VPSHR inserted (Section 4 + abbreviations)
  • SM/OPS/SOP/001 IOR SOP and Annexes A–H — VPSHR referenced
  • SM/TRG/DOC/001 Human Rights PCASP Training (28 slides, UDHR / VPSHR / ICoCA)
  • SM/TRG/DOC/002 Human Rights Staff & Management Training (28 slides)
  • SM/INT/POL/002 Code of Conduct — VPSHR & ICoCA aligned
  • SM/CAM/BUL/001 awareness bulletin deployed via campaign portal
  • LMS courses covering both PCASP and shore-side audiences (live)

VPSHR is now woven through the policy library, the RUF, the SOPs, the training platform and the campaign. Not a reference — an integration.

07
Finding F7 · NCR-007

IRT Exercise — Completion & Documentation

Shell asked for: a full IRT exercise with realistic operational scenario, documented with objectives, lessons learned and corrective actions, integrated back into the Incident Response Plan.

Closed · Evidence complete
What we built · document refs
  • SM/HSE/RPT/001 IRT Exercise Report — Office Fire
  • Seven participants · Piraeus office fire scenario
  • Conducted 27 March 2026 · full after-action review
  • Four follow-up OFIs logged (OFI-013 to OFI-016) on NCR register
  • SM/INT/PRO/006 Incident & Crisis Management Plan — cross-referenced
  • SM/INT/PRO/016 Emergency Preparedness & Response Procedure
  • New folder: 07 · Audit and Review / Exercises and Drills established

A tabletop exercise with genuine friction, honestly reported. The mistakes in the report are real mistakes, because a polished exercise wouldn't have earned the OFIs that came out of it. Those OFIs are now tracked separately and working toward closure ahead of 3 May.

Section Two · OFI closure

The eight OFIs, answered

Compact format for the lighter-touch items — one row per OFI with the deliverable and document reference.

01

Formal Management of Change process

Full MoC suite built S33: SM/INT/PRO/013 procedure, SM/INT/FORM/003 Word form, SM/INT/REG/009 register, online Change Request form at campaign/tools/change-request.html
Closed
02

Structured annual Management Review cycle

SM/INT/PRO/019 Management Review Procedure built S34. SM/INT/MRM-001 v1.1 first formal MR minutes — ISO 45001 scope setting
Closed
03

Sanctions listings in compliance workflows

OFAC / UK FCDO / EU FSF screening live (30 000+ entries). SM/INT/REG/007 External Standards register updated. Code of Conduct, Risk Screening Tool, Sanctions Screener all aligned
Closed
04

Vessel delay wording — safety reasons

SM/OPS/SOP/001 IOR SOP — Annex A & H amended 26 Jan to clarify legitimate safety-led delays (weather during transfer, operational risk)
Closed
05

UKMTO as primary vessel defence contact

SM/OPS/SOP/001 annexes updated — UKMTO designated as primary incident reporting pathway. Cross-referenced in training course C09 Incident Reporting
Closed
06

Minimum standards for Security Escort Vessels

SM/OPS/SOP/002 WAF SEV Operations SOP + Annex A (MSLO). SM/SEC/FORM/003 SEV Vessel Information Form (39 vessel doc items). SM/SEC/PRO/004 and 005 SEV approval procedures refreshed
Closed
07

Drugs & Alcohol policy applicability

SM/INT/POL/010 Drugs & Alcohol Policy v1.0 and SM/INT/PRO/021 D&A Testing Procedure — applicability clarified across PCASP, office and WAF operational staff
Closed
08

Formal PCASP security briefing to Master

Master briefing deck finalised and referenced in SOP annexes. Issued to HR / Training and Ops for TL distribution via IOR/Briefings/For Distribution
Closed
3 May 2026 · Close-out

What the close-out visit looks like from here

Andy, Dennis and Neil reconnect with Seagull on 3 May. Every finding walked through against its evidence. Every OFI cross-referenced to its document. The Combined Work Programme open on screen, the Document Register searchable, the LMS live, the HSE app reporting, and Libero's ISO 45001 Stage 2 result (21 April) already on the table. The audit closed formally on 19 February — that was the day the starting whistle blew. This is the day we show what was done with the months that followed.