June 3, 2017

I have been keeping up with the news on the IT outage at BA and noticed that it resonates with subject matter in a blog entry I wrote in February.

Many will know of the IT outage blamed in the press on power failure probably linked to human error at the British Airways d...

May 17, 2017

Ransomware is the extortion-driven malware epidemic sweeping the globe. There are a large and growing number of Ransomware programs all with variants being created on a daily basis in order to evade anti-malware tools. As with WannaCry, the designs may increasingly use...

May 12, 2017

In the wake of the recent WCry Ransomware attacks on the NHS I have to ask whether I ammissing something; or has the cyber security world disappeared up the backside of complication?

Let me ask another question? Is it possible nowadays to adequately protect a system (or...

April 17, 2017

"You can't write an entry about stress testing. People will think your article will be about regulatory control and the survival of companies, especially in the financial sector", said my colleague. It is!

Before the recession, the term 'Stress Test' was not a household...

March 4, 2017

There are a growing number of cyber response companies beginning to hit the scene now in response to the sheer number and cost of breaches.

Recently. I read an interesting article by EY in the Business Times about the lack of suitably skilled IT security folk available t...

February 7, 2017

I commented on a recent LI post asking whether the rise in cyber breaches are as a result of insecurity due to failure of InfoSec community to adequately protect their organisations.

It's not the fault of security professionals per se. It is a result of the dynamics betw...

October 27, 2016

Supply chain risk is a popular subject of concern at the moment.

There have been a number of recent papers and studies undertaken surrounding supply chain complexity and risk assessments.

As one would expect, some of these are informative and worthwhile whilst others are...

September 11, 2016

I have been in many meetings and seminars over the past few years where I have been astounded at the response that CISOs, CIOs and IT Directors have given when a point has been raised that risk transfer might be of help.

The type of risk transfer generally being referred...

September 5, 2016

I regularly visit so many organisations and attend so many meetings where the overwhelming view of risk is that it is inversely proportional to control.

All of the other factors that make up scientifically derived risk through objective assessment are either implied (and...

September 5, 2016

The development of incident response, be it in the origins of Computer Emergency Response Teams or the modern equivalent provided by the growing number of commercial breach response companies, has tended to focus on two key factors - both of which I think are a little s...

Please reload

Please reload

Search by Tags
Please reload