Some time ago Jenny Radcliffe (internationally respected social engineering, people risk, and negotiations expert) asked me to be a guest on her new Human Factor podcast. I was delighted to accept. The result […]
The Human Factor Podcast
So Your CISO Owns Your Cybersecurity Risks?
82% of boards are concerned about cybersecurity… …and the UK Parliament think your CEO’s salary should be linked to your firm’s cybersecurity… …but who is really accountable? This June 14th CSO Online article says boards […]
UPDATED: Swift Financial System Breaches…or far more mundane failings?
In mid May we found out the Bank of Bangladesh lost a reported $81m when crooks managed to fraudulently redirect funds to shady recipients via the Swift international money transfer system. Then we […]
Vendor Cybersecurity Governance: Must Haves – Part 2
The first post called out fairly damning findings about the state of vendor security governance at most firms, and looked at the criticality of: Early engagement Doing triage Clarity about vendor selection criteria […]
POLL: Who Is Your Cybersecurity Risk Owner?
Who is viewed as formal owner of your cybersecurity risks? A poll for anyone in any organisation. This isn’t asking who should be risk owner, it’s asking who the majority of staff think owns these risks. […]
The Cybersecurity Prayer
A little irreverent levity for beleaguered security pros everywhere: The Cybersecurity Prayer Our metadata, that art in clouds, cyber attack fodder be thy name… Thy nation state be backing, thy organised crime […]
