Defence (or Defense) In Depth – a phrase we both love to repeat and repeatedly critique. Perhaps it’s a word problem, not a sense problem…
The interweb says it should be. Every day, in every way, it’s getting FUDdier: Cyberterrorists, Cyberespionage, Cybercriminals, Cyberbogeymen. Cybercars, Cyberheating, Cybercyber. By rights nothing should be working. All of our bank accounts […]
Just like Schrödinger and his quantum feline, most companies are just making assumptions about the state of their cybersecurity risks.
Did you think you were a driving god when you first passed your test? Are you 100% compliant with the latest security standards? Could there be parallel lessons to apply to mitigating InfoSec risks?
Re-relased for Christmas 2015 the original Infospectives InfoSec Karaoke. Are you a security songstress? We’d love to hear your version.
A double dose of what we hope is the security obvious. What do you think when someone calls a system 100% hack proof? And are all pen tests created equal?
When it comes to cyber, information, IT (or whatever you choose to prefix it with) security, where do you draw a compliant and cost-effective line? Where, between gold-plated and the status quo, is good enough?
It looks entirely possible you will have ‘adequate’ security dictated by your insurers, so it is your job to understand the risk based yardstick they’re using to define that