by Sarah Clarke | Jun 14, 2016 | Corporate Security, InfoSec
82% of boards are concerned about cybersecurity… …and the UK Parliament think your CEO’s salary should be linked to your firm’s cybersecurity… …but who is really accountable? This June 14th CSO Online article says boards are ready to fire...
by Infospectives | May 5, 2016 | Corporate Security
Who is viewed as formal owner of your cybersecurity risks? A poll for anyone in any organisation. This isn’t asking who should be risk owner, it’s asking who the majority of staff think owns these risks. [polldaddy poll=9408916] You can chose one answer,...
by Infospectives | Aug 1, 2015 | Corporate Security, InfoSec
A four-part story of budget cuts, blamestorming, breaches and massive bumps in the road to mature security. In the last two parts of the story, using Nick Leeson’s take down of Barings bank as an analogy, i looked at the boom/bust cycle of security spending....
by Sarah Clarke | May 15, 2015 | Corporate Security, InfoSec
Everybody has at least one. It’s usually orangey red, long in the tooth, semi-regularly reported, infrequently updated and fought about annually. Like Schrödinger’s pussy cat, it’s usually in a box (4 x 4 or 5 x 5) and has known...
by Sarah Clarke | Apr 17, 2015 | Corporate Security, InfoSec
When it comes to cyber, information, IT (or whatever you choose to prefix it with) security, where do you draw a compliant and cost-effective line? On one hand there’s regulation, legislation and ‘best practice’ (of myriad flavours), on the other...