Last chance to register for our October GDPR webinar!

Join IT Governance Europe for this exciting new webinar series to find out what you need to do to become GDPR compliant. Our GDPR webinars are presented by Alice Turley, a highly experienced data protection, consumer protection and compliance consultant providing expert and solution-based advice to Irish organisations. How to conduct effective Data Protection Impact Assessments (DPIAs) to minimise … [Read more...]

How certified ISO 27001 training can help protect your organisation

Acquire industry-leading qualifications and practical skills to implement and audit an ISO 27001 information security management system (ISMS). Our team led the world’s first ISO 27001 certification project and we’ve helped more than 7,000 professionals with ISO 27001 training on ISMS implementations and audits. ISO 27001 training Anyone who wants to get the most out of ISO 27001 should enrol on a … [Read more...]

Upcoming free EU GDPR (General Data Protection Regulation) webinars

The GDPR has significantly reshaped the data protection landscape for organisations worldwide that collect and process EU residents’ personal data. The Regulation imposes fines of up to 4% of annual global turnover or €20 million (whichever is higher) for non-compliance, grants extended rights to data subjects and allows data subjects to bring legal action against organisations in the event of a … [Read more...]

Facebook facing investigation and fine of up to $1.6 billion over data breach

On Tuesday, 25 September, Facebook discovered a major data breach that gave criminal hackers the ability to take over user accounts.   50 million Facebook users worldwide may be impacted by the breach, including about 5 million European accounts.  The Irish DPC (Data Protection Commission) has opened a formal investigation, which could result in Facebook being fined up to $1.63 billion (about … [Read more...]

PCI DSS: The importance of penetration testing

Often, organisations rely on vulnerability scans to identify their weaknesses. They are told that vulnerability scanning is as good as penetration testing and that it will be enough to meet the compliance requirements of the PCI DSS (Payment Card Industry Data Security Standard).  However, scanning and testing perform two different jobs, and the PCI DSS mandates that you conduct both on a regular … [Read more...]

Facebook data breach: what you need to know

On the afternoon of Friday, 28 September, Facebook announced that 50 million Facebook accounts had been breached.   What happened?  Facebook’s Vice President of Product Management, Guy Rosen, announced that the security breach affected 50 million users.   It is believed the attackers exploited a vulnerability in Facebook’s code involving the “View As” feature, which allows people … [Read more...]

How ISO 27001 can help protect your organisation

Accredited certification to ISO/IEC 27001:2013 demonstrates to existing and potential customers that your organisation has defined and put in place best-practice information security processes. ISO 27001 is the only auditable international standard that defines the requirements of an ISMS (information security management system). An ISMS is a set of policies, procedures, processes and systems that … [Read more...]

Five ISO 27001 books you should read

As a professional embarking on your first journey implementing ISO 27001, you are probably hungry for knowledge and eager to make progress. While starting a new project may be exciting, it can also be daunting if you lack relevant experience and cannot rely on internal support and guidance. Many ISO 27001 practitioners attend ISO 27001 Lead Implementer courses to gain practical knowledge and … [Read more...]

IT Governance Free ISO 27001 and GDPR Webinars. Register today!

Join IT Governance Europe for the upcoming ISO 27001 and GDPR webinars, don’t miss out and register today! Assessing compliance: the ISO 27001 ISMS internal audit 28 September 2018, 2:00–3:15 pm (GMT)  Testing and assessing your information security measures is essential to ascertain whether the controls you have implemented are working effectively. Compliance with the international … [Read more...]

Pros and cons of penetration testing

Cyber attacks are costly to any organisation. They can cripple systems, lead to large fines and cause reputational damage. Performing an internal penetration test can help safeguard your organisation and its network.   Penetration testing is globally acknowledged as an important part of cyber security, but, like any security mechanism, it’s not perfect.   Below is an outline of the pros and cons … [Read more...]