dcsimg

Summer offers to kick-start your cyber security journey. Don’t miss out! 

IT Governance is a leading global provider of IT governance, risk management and compliance solutions, with a special focus on cyber resilience, data protection, the PCI DSS (Payment Card Industry Data Security Standard), ISO 27001 and cyber security.  We are committed to helping organisations protect themselves and their customers from the perpetually evolving range of cyber threats. Our deep … [Read more...]

Is your organisation tackling cyber security the right way?

Most organisations’ cyber security defences aren’t good enough. How could they be? Even with unlimited money and staff, it is practically impossible to address the constantly emerging and evolving threats. There are unpatched systems, potential malware infections, the threat of large-scale attacks and any number of vulnerabilities that employees bring with them, from weak passwords to … [Read more...]

9 steps to implementing ISO 27001

There are many reasons to adopt ISO 27001, the international standard that describes best practice for an information security management system (ISMS). It helps organisations improve their security, comply with cyber security regulations, and protect and enhance their reputation. But implementing the Standard takes a lot of time and effort. That should be obvious, at least if you believe the … [Read more...]

The GDPR and Brexit

In less than a month from now, the General Data Protection Regulation (GDPR) comes into force across the EU. It is expected that businesses and charities across Ireland have taken the necessary measures, such as preparing new policies, appointing chief information security officers, restricting IT admin rights and installing firewalls and controls over company-owned devices, to ensure compliance … [Read more...]

How to spot a phishing attack

Phishing is one of the biggest threats that individuals and organisations face, but do you know what they are, what they look like, and where to look for them? In the broadest sense, phishing is any attempt to pose as a trustworthy source in order to get people to hand over personal information. Phishing usually takes the form of mass emails sent to hundreds or thousands of people, criminals can … [Read more...]

Five ISO 27001 books you should read

Five ISO 27001 books you should read As a professional embarking on your first journey implementing ISO 27001, you are probably hungry for knowledge and eager to make progress. While starting a new project may be exciting, it can also be daunting if you lack relevant experience and cannot rely on internal support and guidance. Many ISO 27001 practitioners attend ISO 27001 Lead … [Read more...]

Passwords, emails and data compromised in targeted attack on an African embassy in Dublin

An African embassy is understood to have been breached for ten days in February, with cyber criminals gaining access to passwords, emails and data.   Andy Norton, intelligence threat director of Lastline, a malware protection provider, said: “We track infections from sophisticated tools. In the course of our investigation, one of the tools compromised was an African ambassador based out of … [Read more...]

Why are so many organisations getting certified to ISO 27001?

What do Microsoft, Verizon, Apple, Google, Intel, and Amazon have in common? As well as all being Fortune 500 companies, they are all ISO 27001 certified. With a global growth rate of 20%, ISO 27001 has become the de facto standard for information security management system (ISMS) certifications. Why are so many organisations getting certified to ISO 27001? Data breaches and cyber attacks are, … [Read more...]

The challenges facing companies in the lead up to GDPR – A consultant’s perspective

Sharon O’Reilly, GRC/GDPR consultant at IT Governance Europe, was interviewed by The Sunday Business Post before her appearance today at the GDPR Summit. She discussed the challenges facing organisations in the lead up to the General Data Protection Regulation (GDPR).  According to Sharon, these challenges include:  Finding/sourcing the right people to drive compliance programmes;  Determining … [Read more...]

What you need to know about Ireland’s newly published 2018 Data Protection Bill

The Irish government has published its highly anticipated 2018 Data Protection Bill. The Bill, which broadly follows the general scheme released in May 2017, incorporates Ireland’s national implementing measures required under the General Data Protection Regulation (GDPR) as well as a new regulatory framework for enforcing data protection laws in Ireland. What you need to know: > The “digital … [Read more...]