dcsimg

What makes ISO 27001 the go-to standard for information security?

ISO 27001 is one of the fastest-growing management standards in the world. with the number of awarded certifications increasing by 20% in consecutive years. In 2016 (the last available figures), 33,290 certifications were issued worldwide, and 27,536 certifications were awarded the year before.  ISO 27001 is clearly very popular, but what makes it the standard for information … [Read more...]

Drought and the importance of business continuity

Like many European countries, Ireland is currently experiencing some of the warmest weather in recent history. Although many of us are enjoying the heatwave, it also brings with it serious problems. Parts of Ireland have experienced little to no rainfall over the past three weeks, and combined with exceptionally high temperatures, there has been a severe drop in the water levels in lakes and … [Read more...]

52% of web applications contain high-severity vulnerabilities

A new study has highlighted the poor state of web application security. Positive Technologies tested various web applications, and found that every single one contained vulnerabilities, with 52% containing high-severity weaknesses.  The Web Application Vulnerabilities report also found that:  48% of tested applications are vulnerable to unauthorised access;  44% of applications placed personal … [Read more...]

The future for CISOs following the introduction of the GDPR and NIS Directive

The responsibilities of the CISO (chief information security officer) have remained consistent over the years, but big changes in the cyber security landscape in 2018 could spark an evolution of the role.  Largely led by the introduction of the EU GDPR (General Data Protection Regulation) and the NIS Directive (Directive on security of network and information systems), organisations are shifting … [Read more...]

Unsure about implementing a BCMS? Here are a few things you should know

Business continuity is more important than ever. Security incidents are so widespread that it’s impossible to tackle them all, and sooner or later disaster will strike. When that time comes, you’ll need a system to mitigate the damage and ensure that mission-critical functions continue to operate. Although most organisations are starting to recognise the importance of such measures, some remain … [Read more...]

Why you should adopt ISO 27001

With cyber attacks and data breaches on the rise, cyber security is fast becoming organisations’ top priority. Many have chosen to mitigate the risk by implementing an information security management system (ISMS). An ISMS is a system of processes, documents, technology and people that helps organisations manage, monitor and improve their information security in one place. ISO 27001 is the … [Read more...]

1 in 8 cyber attacks successful in Denmark

A recent survey by the Danish Society of Engineers’ IT subsidiary, IDA-it, concluded that two thirds of businesses had experienced a cyber attack, and that up to one in eight cyber attacks carried out against Danish organisations are successful. IDA-it surveyed people working in IT or personal data related roles in the public and private sector. Kåre Løvgren, IDA-it’s chairperson, said that … [Read more...]

The GDPR has arrived: What happens now?

So, the EU General Data Protection Regulation (GDPR) is here and the sky hasn’t fallen. Some have reacted with an eye roll and a muttered “what did you think was going to happen?” Others will think it’s Y2K all over again: a big build up for nothing. Of course, the world post-25 May 2018 looks very much the same as it did before, but it’s much too early to pass judgement. The effects of the GDPR … [Read more...]

Snapchat releases details of its GDPR compliance measures

Snapchat has announced changes to its privacy policy and user settings as it prepares for the EU General Data Protection Regulation (GDPR), which takes effect on 25 May 2018. Many organisations have downplayed the requisite changes as ‘tweaks’ to their policies, but Snapchat has made a point of emphasising its widespread alterations. The most significant revelation is that, unlike rival messaging … [Read more...]

20 EU member states haven’t implemented the NIS Directive

EU regulators have been concerned about the growing threat to our essential services, particularly in view of the number of successful cyber attacks targeting critical infrastructure. As part of their response, they introduced a law in 2016 dedicated to help protect essential services: the Directive on security of network and information systems (NIS Directive). The NIS Directive applies to two … [Read more...]