dcsimg

Last chance to register for our October GDPR webinar!

Join IT Governance Europe for this exciting new webinar series to find out what you need to do to become GDPR compliant. Our GDPR webinars are presented by Alice Turley, a highly experienced data protection, consumer protection and compliance consultant providing expert and solution-based advice to Irish organisations. How to conduct effective Data Protection Impact Assessments (DPIAs) to minimise … [Read more...]

How certified ISO 27001 training can help protect your organisation

Acquire industry-leading qualifications and practical skills to implement and audit an ISO 27001 information security management system (ISMS). Our team led the world’s first ISO 27001 certification project and we’ve helped more than 7,000 professionals with ISO 27001 training on ISMS implementations and audits. ISO 27001 training Anyone who wants to get the most out of ISO 27001 should enrol on a … [Read more...]

Upcoming free EU GDPR (General Data Protection Regulation) webinars

The GDPR has significantly reshaped the data protection landscape for organisations worldwide that collect and process EU residents’ personal data. The Regulation imposes fines of up to 4% of annual global turnover or €20 million (whichever is higher) for non-compliance, grants extended rights to data subjects and allows data subjects to bring legal action against organisations in the event of a … [Read more...]

So you’ve suffered a data breach? What to do next

It’s an announcement no information security specialist wants to make: the organisation has suffered a data breach. The breach is bad enough, but now everyone in the office is panicking. Some will grumble about how they’re going to miss deadlines, others will frantically wonder whether they’re responsible for the breach and a few will probably blame the InfoSec professional for not doing their job … [Read more...]

Facebook facing investigation and fine of up to $1.6 billion over data breach

On Tuesday, 25 September, Facebook discovered a major data breach that gave criminal hackers the ability to take over user accounts.   50 million Facebook users worldwide may be impacted by the breach, including about 5 million European accounts.  The Irish DPC (Data Protection Commission) has opened a formal investigation, which could result in Facebook being fined up to $1.63 billion (about … [Read more...]

PCI DSS: The importance of penetration testing

Often, organisations rely on vulnerability scans to identify their weaknesses. They are told that vulnerability scanning is as good as penetration testing and that it will be enough to meet the compliance requirements of the PCI DSS (Payment Card Industry Data Security Standard).  However, scanning and testing perform two different jobs, and the PCI DSS mandates that you conduct both on a regular … [Read more...]

Start your GDPR training today!

The GDPR provides a single, harmonised data privacy law for the EU. It aims to prevent the loss of personal data by improving data security for all individuals living in EU member states. The GDPR came into force on 25 May 2018, and organisations that fail to comply face fines of up to €20 million, or 4% of global annual turnover – whichever is greater. Many organisations are struggling to fill a … [Read more...]

Facebook data breach: what you need to know

On the afternoon of Friday, 28 September, Facebook announced that 50 million Facebook accounts had been breached.   What happened?  Facebook’s Vice President of Product Management, Guy Rosen, announced that the security breach affected 50 million users.   It is believed the attackers exploited a vulnerability in Facebook’s code involving the “View As” feature, which allows people … [Read more...]

How ISO 27001 can help protect your organisation

Accredited certification to ISO/IEC 27001:2013 demonstrates to existing and potential customers that your organisation has defined and put in place best-practice information security processes. ISO 27001 is the only auditable international standard that defines the requirements of an ISMS (information security management system). An ISMS is a set of policies, procedures, processes and systems that … [Read more...]

Five ISO 27001 books you should read

As a professional embarking on your first journey implementing ISO 27001, you are probably hungry for knowledge and eager to make progress. While starting a new project may be exciting, it can also be daunting if you lack relevant experience and cannot rely on internal support and guidance. Many ISO 27001 practitioners attend ISO 27001 Lead Implementer courses to gain practical knowledge and … [Read more...]