by Sarah Clarke | Apr 14, 2015 | Corporate Security, InfoSec
Are you seriously going to ask your milkman the same security questions as your network hosting partner? Of course not. But between those extremes, companies have a world of pain working out how much vendor and change assurance is enough. If you can answer...
by Sarah Clarke | Mar 16, 2015 | Corporate Security, InfoSec
It’s out! The all new Trustwave Security Pressures Report. Last year 80% IT pros felt pressure to deliver insecure IT solutions. What’s changed? Ohhh this one never gets old! This post was first published over a year ago when Trustwave reported...
by Sarah Clarke | Mar 3, 2015 | Corporate Security, InfoSec
Traditionally, performing third party due diligence has been primarily a data gathering activity. Now, with access to abundant information sources, the activity—and the challenges—have evolved. …a potential provider that brags about how comprehensive their due...
by Sarah Clarke | Dec 17, 2014 | Corporate Security, Published elsewhere
Norman Marks recently published an insightful take on why internal audit fails at many organisations. Informed by a recent PwC survey. “about half of internal audit’s key stakeholders (board members and top executives) do not believe that internal audit is...
by Infospectives | Jul 31, 2014 | Corporate Security, InfoSec
A post inspired by this article on Tripwire’s State of Security blog by Cindy Valladares – Here’s an excerpt to go with the graphic. “Maslow’s Hierarchy of Needs framework suggests that individuals are concerned with layers of needs, making us...