IBM says cybercrime is the greatest threat you will face…but how do you know the scale and likelihood of fallout for your business and decide whether tools really are the answer?
First of what may turn into a series of GRC day job related posts. Here I’m highlighting challenges for anyone involved with system security audits or assessments. This isn’t about merits of various […]
An old fashioned tale of reporting lines impacting effective communication, missing due diligence, disgruntled insiders, social engineering, technical risk blinkers, political incident response and risk owners not being armed with the information they need.
The cyber headline says ‘JUMP’, do you say ‘How high?’ Here we suggest turning red-teaming on it’s head to raise awareness of the defence status quo and build confidence in the response to new nasties.
…at least for a while. How far have you pushed security conversations away from reality and do you have the culture, courage and people to put that right?
Chucking Boulders In Our Glass Cybersecurity House – The fourth and final part of a story of budget cuts, blamestorming, breaches and massive bumps in the road to mature security.
Fatal Fails, Piecemeal Resurrections & The Budget Battleground – Part 2 of a story of budget cuts, blamestorming, breaches and massive bumps in the road to mature security.
Just like Schrödinger and his quantum feline, most companies are just making assumptions about the state of their cybersecurity risks.