dcsimg

Why a cyber security culture is essential for your organisation to succeed

Do your employees complain about having to take information security training courses? Are they still practising poor data protection practices?  If so, you have a poor cyber security culture and are liable to suffer a data breach sooner rather than later.  Lax practices in the workplace mean it’s not just cyber criminals you should be concerned about but also breaches caused … [Read more...]

Develop better cyber security by taking a wider view of the threats

Technology giveth and technology taketh away, and not always in equal measure. A new technology sometimes creates more than it destroys. Sometimes, it destroys more than it creates. But it is never one-sided. (Postman, 1990)  Despite Postman’s dire prediction, society has profited immensely from the development, implementation, and operation of new information technologies. Our lives have been … [Read more...]

Protect your organisation by building a security-minded culture

Human behaviour is complex and inconsistent, making it a rich hunting ground for would-be criminal hackers and a significant risk to the security of your organisation.  In Build a Security Culture, security consultant and trainer Kai Roer discusses the human and cultural factors in organisational security, and explains how to ensure your organisation is set up to manage and deter malicious … [Read more...]

What’s the difference between a data breach and a cyber security incident?

The information security industry is full of jargon, but luckily most terms only crop up when you’re dealing with specific, technical topics. However, there’s one common but surprisingly complex phrase that often appears without further explanation: ‘cyber security incident’.  You might assume it’s simply a euphemism for organisations that don’t want to say ‘we’ve suffered a data breach’. That’s … [Read more...]

Get involved in #CyberSecMonth 2019

This week marks the beginning of ECSM (European Cyber Security Month) 2019, an initiative run by ENISA (the European Union Agency for Cybersecurity), the European Commission DG CONNECT and partners to promote the importance of cyber security and highlight the steps that can be taken to mitigate cyber security risks.   This year’s themes The theme in the first two weeks is cyber hygiene, and … [Read more...]

Five must-read books on cyber security

Books are a great way of increasing your cyber security knowledge, but with thousands to choose from, it’s difficult to know where to begin.  To help you get the best information available and enable you to advance your cyber security career, we’ve chosen some of our best titles for you. Security in the Digital World Technology is always developing, and so are the threats and risks of being … [Read more...]

Why your organisation needs a cyber insurance policy

Effective information security is essential in today’s business world, but there will still be times when your best defences aren’t enough.  Even as organisations prioritise cyber security, the threat continues to spiral. Last year, the number of reported data breaches almost tripled, with more than 2.3 billion records being compromised. We’ve already seen three times as many breached records in … [Read more...]

Why you should adopt ISO 27001

A version of this blog was originally published on 13 June 2018  With cyber attacks and data breaches on the rise, organisations are making information security a top priority. Many have chosen to tackle the risk with the help of an ISMS (information security management system).  An ISMS is a system of documents, technology and people-management processes that … [Read more...]

Learn how to implement and maintain an ISO 27001-compliant ISMS with IT Governance

ISO 27001 is one of the most popular cyber security standards in the world, with the number of organisations achieving certification growing by more than 450% in the past 10 years. The Standard outlines best practice for an ISMS (information security management system). Achieving accredited ISO 27001 certification demonstrates that your organisation is … [Read more...]

How to adopt a comprehensive, risk-based approach to cyber security

Amid all the expert advice about how to keep your organisation safe from data breaches, it’s important to remember that there’s no one right way to address information security.  Sure, there are universal threats, and technologies and processes that address them. We hope every organisation has fundamental security processes, like staff … [Read more...]