A departure from normal posts in honour of World Mental Health Day. Anyone, no matter how seemingly professional, positive, strong-willed and ‘together’ can suffer from depression. It can be situational; caused by […]
First of what may turn into a series of GRC day job related posts. Here I’m highlighting challenges for anyone involved with system security audits or assessments. This isn’t about merits of various […]
It’s a tough trick to put gut reactions in a box, but that’s what I’m trying to do (a tidge unsuccessfully). I’m not now claiming some intellectual high ground, just pausing […]
An old fashioned tale of reporting lines impacting effective communication, missing due diligence, disgruntled insiders, social engineering, technical risk blinkers, political incident response and risk owners not being armed with the information they need.
A journey from first internet encounters to Minecraft mods, while mindful of the risks and benefits of online adventuring
The cyber headline says ‘JUMP’, do you say ‘How high?’ Here we suggest turning red-teaming on it’s head to raise awareness of the defence status quo and build confidence in the response to new nasties.
Titilating, terrifying and a security awareness tipping point? If it caught your attention how would you manage the same risk online safety-wise and help your company do better at security
2003 Server is dead, Flash is mortally wounded, but they’ll stick around like decaying zombies for many years to come. The 500 word snacklets of security opinion and advice don’t usually offer […]