82% of boards are concerned about cybersecurity… …and the UK Parliament think your CEO’s salary should be linked to your firm’s cybersecurity… …but who is really accountable? This June 14th CSO Online article says boards […]
So Your CISO Owns Your Cybersecurity Risks?
UPDATED: Swift Financial System Breaches…or far more mundane failings?
In mid May we found out the Bank of Bangladesh lost a reported $81m when crooks managed to fraudulently redirect funds to shady recipients via the Swift international money transfer system. Then we […]
Diary Of An InfoSec Kid – Betcha can't beat THAT Password!
I wanted to blast an assumption about your kids’ ability to manage their own security My kids have been told since they were tiny what it’s ok, and not ok, to do […]
When Mum's LinkedIn Password Is Nicked
Part of the Infospectives Diary Of An InfoSec Kid series. Originally written about the Kiddicare hack, but now 117 Million LinkedIn usernames and passwords have been found for sale on the darknet […]
Vendor Cybersecurity Governance: Must Haves – Part 2
The first post called out fairly damning findings about the state of vendor security governance at most firms, and looked at the criticality of: Early engagement Doing triage Clarity about vendor selection […]
POLL: Who Is Your Cybersecurity Risk Owner?
Who is viewed as formal owner of your cybersecurity risks? A poll for anyone in any organisation. This isn’t asking who should be risk owner, it’s asking who the majority of staff think owns these risks. […]
Vendor Cybersecurity Governance: Must Haves – Part 1
Does your #SupplyChain #Cybersecurity #RiskManagement reflect your security dependence on 3rd parties?
Death, Taxes & Security Transformation
Out with the old and in with the new. Musing on a personal and #InfoSec transformation
