Opinion

Opinion

IT project management

• Assessment and knowledge: Your key tools to secure suppliers

  There is no silver bullet that will resolve all the issues arising from today’s interconnected businesses and complex supply chains, but there are some key tools at your disposal  Continue Reading

• Security Think Tank: Supply chain security demands systematic approach

  Supply chain security measures need to be systematic and assessed so as to minimise the complexity and cost to the business  Continue Reading

• Security Think Tank: Balanced approach can detangle supply chain complexity

  Achieving an appropriate balance between people, processes and technology can help to detangle the complexities of the supply chain and create better security practices  Continue Reading

• Supply chain security goes deep – forget this at your peril

  It may have hit the headlines as an IT issue, but supply chain security goes far deeper into an organisation than just technology  Continue Reading

• Naivety of computer evidence leaves door ajar for more miscarriages of justice

  Barrister Paul Marshall explains why the government’s lack of action on reforming the legal rules around computer evidence, which presume it is correct, mean the Post Office Horizon scandal could be the tip of a miscarriages of justice iceberg  Continue Reading

• The importance of making information security more accessible

  Robin Smith, CSO of Aston Martin Lagonda, talks about how an accessible approach to cyber is helping him to keep the organisation secure  Continue Reading

• Security Think Tank: Understanding attack paths is a question of training

  The modern-day abundance of platforms, apps and IT tools presents malicious actors with a web of interconnection that is easily exploited to move rapidly through the network to compromise critical assets. Security teams need to understand these ...  Continue Reading

• Security Think Tank: To follow a path, you need a good map

  The modern-day abundance of platforms, apps and IT tools presents malicious actors with a web of interconnection that is easily exploited to move rapidly through the network to compromise critical assets. Security teams need to understand these ...  Continue Reading

• Building distributed systems requires effective developer teams

  Technologies edge computing and containerisation call for teams capable of building distributed systems  Continue Reading

• Why diversity in AI remains a challenge and how to fix it

  With artificial intelligence set for a global economic explosion, its development must put diversity at its core to avoid discriminating systems  Continue Reading

• 2022 must be a big year for sustainability in the tech sector

  As the pandemic might be easing, many organisations have an opportunity to refocus on core strategic goals and aims. For the tech sector, one of these must be sustainability  Continue Reading

• Subpostmasters won their David and Goliath battle, but initial goal still not reached

  Despite exposing the Post Office Horizon scandal, Alan Bates, the former subpostmaster who drove the campaign for the truth, says the goal of repaying people what they lost has not yet been achieved  Continue Reading

• Security Think Tank: How to build a human firewall

  In-house or outsourced? What makes a good security training programme, and what questions should buyers ask when procuring training as a service?  Continue Reading

• A trial relying on computer evidence should start with a trial of the computer evidence

  Learning from the Post Office Horizon scandal - the most widespread miscarriage of justice in recent British legal history  Continue Reading

• Security Think Tank: In the cloud, anti-human approaches set us up to fail

  Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months  Continue Reading

• Security Think Tank: SASE – more than the sum of its parts?

  Airbus Cybersecurity’s Paddy Francis asks what makes an integration of the various components of SASE more the sum of their parts, and what are the benefits and pitfalls?  Continue Reading

• Security Think Tank: What to find out before investing in SASE

  Petra Wenham of the BCS shares her thoughts on what organisations need to consider as they investigate whether or not to invest in secure access service edge technology  Continue Reading

• Security Think Tank: SASE – marketing buzz or the future of security?

  SASE architectures promise to prevent multiple types of cyber attacks, but deciding whether SASE is right for your organisation will require understanding whether SASE is a fit for your use cases in IT  Continue Reading

• How to prevent developer burnout

  The pandemic has led to more pressure on software developers, many of whom have reported increased levels of stress and anxiety  Continue Reading

• IR35 reforms: Tech firms warned off relying on high-risk compliance workarounds

  Several months have passed since the onset of the IR35 reforms in the private sector, but compliance with the rules remains an ongoing process, warns Brookson Legal’s Matt Fryer  Continue Reading

• How the cyber security market is evolving

  The cyber security market has gained even greater importance in the post-Covid era and continues to grow and evolve. But what factors are driving trends in that market and what should your organisation consider when making cyber security investments?  Continue Reading

• Firms struggle to manage their innovation ecosystems

  A lack of governance and performance mechanisms is hindering firms from getting the most out of suppliers in their innovation ecosystems  Continue Reading

• The unintended consequences of digital transformation

  Digital transformation offers organisations a way to change fundamentally the way they operate  Continue Reading

• Security Think Tank: Consider cyber policies and procedures as you welcome employees back

  With Covid-19 restrictions easing, offices are welcoming back remote workers this summer, bringing with them their notebooks and mobiles, and creating an endpoint management headache for CISOs. What do security teams need to account for to protect ...  Continue Reading

• Can a web app ever be truly secure?

  Despite the wealth of vulnerability detection tools and practices, there remains a vast array of web application security breaches  Continue Reading

• Choose the right ITSM tool for digital era success

  IT service management (ITSM) tools are essential for many organisations to help optimise the design, delivery, support, use and governance of IT, but not all ITSM solutions are created equal, therefore selecting the right one is crucial  Continue Reading

• Security Think Tank: Hydration, hiring, hacking – lessons in post-Covid risk

  With Covid-19 restrictions easing, offices are welcoming back remote workers this summer, bringing with them their notebooks and mobiles, and creating an endpoint management headache for CISOs. What do security teams need to account for to protect ...  Continue Reading

• Universal Credit: What went wrong, and what we learned

  The architect of one of the biggest and most controversial government policies – and IT failures – of the past decade gives his inside view of the project, and how Computer Weekly was a thorn in their side  Continue Reading

• Security Think Tank: To secure printers think process, technology and people

  Though rarely discussed in a cyber context, the prevalence of connected printers and MFPs poses security risks both technological and physical. What does a print security strategy need to take into account?  Continue Reading

• Why agility is the key to secure software

  Continuous delivery of software product releases demands continuous security. Businesses and regulators are right to wonder whether organisations are valuing cyber security by the design of their products  Continue Reading

• NHS Digital’s GP data-scraping plan must be publicised and delayed

  The UK government must launch a national awareness campaign and delay this month’s planned GP data slurp, say privacy consultants Ben Rapp and Sara Newman  Continue Reading

• Policies key to revolutionising Identity Governance and Administration

  The proliferation of digital identities, applications, data, security threats and compliance requirements means that Identity Governance and Administration (IGA) has never been more important, but not all organisations are approaching it in an ...  Continue Reading

• The shape of fraud and cyber crime: 10 things we learned from 2020

  While a pandemic-driven increase in cyber crime and an exacerbation of existing fraud trends were, to a large extent, to be expected, the LexisNexis Risk solutions UK cybercrime report 2020 still contained a few surprises  Continue Reading

• Security Think Tank: Vaccine passports must be secure by design

  What are the security issues and challenges presented by vaccine passports, and how should they be designed and used with ethics and privacy in mind?  Continue Reading

• Moving from VMs to a container-based enterprise architecture

  As organisations move to a cloud-native architecture, they will need to consider what to do with their existing virtual server estate  Continue Reading

• Why the London Data Charter could be a foundation stone in the city’s recovery

  London First’s director of connectivity and competitiveness, David Lutton, explains why data is at the core of the capital’s recovery plan  Continue Reading

• Data-driven innovation needs trustworthy governance

  The pandemic has given us a glimpse of what data-driven technology can do for society – and we cannot go back to the status quo  Continue Reading

• Fixing government digital transformation – lessons from the early days of GDS

  As a new organisation is formed to lead UK digital government, three former government digital leaders share the lessons they learned from the early days of the Government Digital Service  Continue Reading

• The ransomware routine: pages from the Secret IR Insider’s diary

  The Secret Incident Response Insider shares behind-the-scenes stories of what really happens after organisations are hit by cyber attacks – and shows how they could have been avoided  Continue Reading

• Security Think Tank: Plan for hybrid working to become normal

  After a year of unprecedented disruption thanks to Covid-19, it looks like remote working is set to remain with us for now, which means security strategies will change in 2021. What will this change look like, and what tools and services will be ...  Continue Reading

• Security Think Tank: Time for security teams to learn from Covid

  After a year of unprecedented disruption thanks to Covid-19, it looks like remote working is set to remain with us for now, which means security strategies will change in 2021. What will this change look like, and what tools and services will be ...  Continue Reading

• Security Think Tank: The year of the work-from-home hangover

  After a year of unprecedented disruption thanks to Covid-19, it looks like remote working is set to remain with us for now, which means security strategies will change in 2021. What will this change look like, and what tools and services will be ...  Continue Reading

• How to manage non-human identities

  Identity management has traditionally focused on human identities, but non-human identities are proliferating and must not be overlooked. Businesses can reduce risk by managing both types of identity in the same way using a services-based approach  Continue Reading

• HANA or ‘na’?

  With alternatives abundant, many organisations are holding off on enterprise software upgrades  Continue Reading

• Security Think Tank: SOAR to the next level with automation

  SIEM and SOAR have much in common, but there are key differences between the two that may influence the best fit for your organisation. What should security pros consider when making a choice?  Continue Reading

• SIEM or SOAR or both? Consider your business complexity first

  SIEM and SOAR have much in common, but there are key differences between the two that may influence the best fit for your organisation. What should security pros consider when making a choice?  Continue Reading

• Security Think Tank: SIEM and SOAR are far from mutually exclusive

  SIEM and SOAR have much in common, but there are key differences between the two that may influence the best fit for your organisation. What should security pros consider when making a choice?  Continue Reading

• Security Think Tank: Alerts are great, it’s what you do with them that counts

  SIEM and SOAR have much in common, but there are key differences between the two that may influence the best fit for your organisation. What should security pros consider when making a choice?  Continue Reading

• How to modernise identity governance and administration

  Modernising identity governance and administration (IGA) capabilities is essential for organisations to manage identities effectively to ensure they remain competitive, compliant and secure  Continue Reading

• Why automation isn’t always an improvement

  Automation can help organisations run more efficiently, but only if the most inefficient steps in a business process are fixed first  Continue Reading

• From front line to back office – how supporting the cyber community keeps the NHS safe

  NHS Digital’s chief information security officer describes how the Cyber Associates Network benefits security experts in health and care  Continue Reading

• Brexit and risks to data privacy and governance

  EY privacy specialists assess the risks to data privacy, protection and governance on the table for businesses, with less than two months until Brexit  Continue Reading

• Five steps to build an artificial intelligence strategy

  Artificial intelligence is the next frontier for IT in businesses, helping to increase competitive advantage. A truly successful AI strategy needs careful planning  Continue Reading

• How to write an executive CV for IT leadership jobs

  Knowing how to write an IT executive CV requires a deep knowledge and skillset that not everyone has. Find out how to set yourself apart from the competition  Continue Reading

• Risk and reward: How to succeed in digital transformation

  Most organisations are seeking to step up their digital transformation efforts, but history has shown that such efforts can be doomed to failure if they take the wrong approach  Continue Reading

• Lapsing ISO certifications: Myth versus risk

  Allowing ISO certifications to lapse presents businesses with serious risks when workarounds are possible  Continue Reading

• Tech executives need new skills to lead in a remote world

  After helping organisations adapt to new ways of working during the Covid-19 pandemic, IT leaders worldwide are now enjoying greater influence, according to this year’s Harvey Nash/KPMG CIO Survey  Continue Reading

• Digital leaders and the widening divide

  This year’s Harvey Nash/KPMG CIO Survey shows a widening of the digital business divide, with companies that have already adopted digital technologies more likely to accelerate those investments than those still in the planning stage  Continue Reading

• Why business resilience management should be high on the agenda

  Business resilience management is key to business survival in the face of rapidly changing IT, cyber threat and regulatory environments  Continue Reading

• Security Think Tank: Edge datacentre security depends on specific needs

  That datacentre security is a complex subject is not in doubt and, given the trend to move beyond centralised datacentres to distributed environments, this is not going to change. How can security professionals ensure such setups are just as secure ...  Continue Reading

• Security Think Tank: Beware security blind spots at the edge

  That datacentre security is a complex subject is not in doubt and, given the trend to move beyond centralised datacentres to distributed environments, this is not going to change. How can security professionals ensure such setups are just as secure ...  Continue Reading

• Security Think Tank: Datacentre security is a business imperative

  That datacentre security is a complex subject is not in doubt and, given the trend to move beyond centralised datacentres to distributed environments, this is not going to change. How can security professionals ensure such setups are just as secure ...  Continue Reading

• Sharing responsibility: Why we need to work together to keep the cloud secure

  The education sector has been fundamentally altered by months of lockdown, with cloud services topping must-have lists for academic staff, but now it’s time to consider security  Continue Reading

• How to tackle the IAM challenges of multinational companies

  The rapidly changing business, regulatory and IT environment makes identity and access management a tough nut to crack for large multinationals  Continue Reading

• The countdown is on for TikTok after Schrems II

  Given the US’ threatened actions against TikTok and the outcome of Schrems II, it is clear that the spotlight is now firmly on international data transfers  Continue Reading

• How the chancellor’s Plan for Jobs could benefit the UK tech sector

  Technology has a strong role to play in the UK’s recovery, with Rishi Sunak’s Plan for Jobs offering opportunities for the sector  Continue Reading

• Security Think Tank: AI in cyber needs complex cost/benefit analysis

  AI and machine learning techniques are said to hold great promise in security, enabling organisations to operate a IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of ...  Continue Reading

• Security Think Tank: Ignore AI overheads at your peril

  Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the...  Continue Reading

• Security Think Tank: SIEM and AI – a match made in heaven?

  Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the...  Continue Reading

• Time to rethink business continuity and cyber security

  Business continuity and cyber security remain largely in separate silos, but changes in the IT and cyber threat landscapes mean there is an urgent need for organisations to alter their approach  Continue Reading

• Gartner: Build a plan to bring remote workers back to the office

  Gartner senior research directors Kevin Ji and John McArthur look at how enterprises can plan and strategise for the reopening of workplaces  Continue Reading

• The Covid-19 crisis: Reinventing digital transformation

  Digital transformation projects are returning as organisations realise that improvements in productivity and customer engagement are now even more important – providing that the work can be done remotely and there’s still cash to pay for it  Continue Reading

• Security Think Tank: Container security starts with good DevOps practice

  Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers?  Continue Reading

• Security Think Tank: Container security is evolving, so must CISOs

  Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers?  Continue Reading

• Security Think Tank: Four steps to container security best practice

  Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers?  Continue Reading

• Security Think Tank: CISO stress – moving from recognition to action

  Cyber criminals are enjoying a boom during the Covid-19 pandemic, and security teams are working overtime as a result. How can security professionals manage their increased workload, safeguard their mental well-being and avoid burnout?  Continue Reading

• Coronavirus: Five-step action plan to keep SAP ticking

  All businesses have been impacted by the coronavirus lockdown. As the economy starts moving again, how should SAP projects proceed?  Continue Reading

• Coronavirus: Why the public sector must pursue IT transformation

  It is clear that the current coronavirus crisis has had a major impact on digital transformation efforts in the public sector  Continue Reading

• IT transformation steps pave the path to new ways to work

  The CEO of Difrent discusses how her roles in local and central government have played a role in public sector IT transformation  Continue Reading

• How to modernise IT systems while ensuring they remain stable

  Organisations need to be both agile and maintain control and stability of their IT. How can they achieve both outcomes?  Continue Reading

• Why zero trust may not be all it’s cracked up to be

  While they are discussed ad nauseam in the security industry, zero-trust architectures may not be all they’re cracked up to be, according to analyst Sam Bocetta  Continue Reading

• Security Think Tank: ID-driven security helps safeguard the workforce

  In our globalised world, high-profile events such as Covid-19 have huge business impacts and some of these impacts may be felt by CISOs. What responsibilities do security pros have in such circumstances, and what steps can they take to shore up ...  Continue Reading

• The UK civil service is broken and needs reform to deliver true digital government

  Boris Johnson’s special adviser, Dominic Cummings, has attracted criticism for his plans to overhaul Whitehall culture, but one former government digital chief argues that he is absolutely right  Continue Reading

• Why the banking industry needs an IT makeover

  UK banks face huge challenges keeping their service availability levels at 99.99%  Continue Reading

• How CI/CD helps digital organisations

  Developments in technology have transformed IT management practices. We discuss the management implications of using CI/CD to drive digitisation initiatives  Continue Reading

• Liberal Democrats: We want to lead the world in ethical, inclusive technology

  Layla Moran, Liberal Democrat MP and party spokesperson for digital, culture, media and sport, writes about the party's technology policies ahead of the upcoming General Election  Continue Reading

• Security Think Tank: Base cloud security posture on your data footprint

  Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security ...  Continue Reading

• Security Think Tank: Secure the cloud when negotiating contracts

  Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security ...  Continue Reading

• Why the rise of IT managed by the business is driving creative thinking

  Organisations that encourage business units to implement and run their own IT systems have an edge over competitors that rely entirely on the IT department, research from Harvey Nash and KPMG reveals  Continue Reading

• Making the move to cloud work for you

  Getting the best out of a move to the cloud means getting the size right, turning off what you don’t need, smart purchasing and continuously decluttering your new environment  Continue Reading

• Agile becomes mainstream

  There are clear parallels between the conditions that led the IT industry to adopt agile approaches and the challenges facing business today  Continue Reading

• More effective digital transformation through the power of your own people

  The old model of escalating decisions up and down the management chain does not work any more. Business leaders need to delegate responsibility for projects to business and technology specialists and eliminate the fear of failure  Continue Reading

• The lesson of TSB – testing, 1, 2, 3

  An organisation’s IT system might look good on the surface, but you can’t fix a problem if you don’t know it’s there  Continue Reading

• Why your marketing team needs help from IT more than ever

  Some IT and marketing departments have a troubled history of working together, but better collaboration is essential to make a success of digital transformation  Continue Reading

• Beware of the digital bandwagon

  The rush to become ‘digital by default’ could drive costs up and have a damaging effect on understanding customer demand, writes John Seddon  Continue Reading

• The seven levers of digital transformation

  Organisations that embark on digital transformation projects often run into difficulties. Following the seven principles of digital transformation will help them reap the benefits of digital technology  Continue Reading

• Gov.uk Verify and identity assurance - it's time for a rethink

  The government's Verify identity platform is not meeting user needs - it's time to step back and review how best to make online identity for public services work  Continue Reading

• Escaping waterfall government and the myth of 'digital transformation'

  An agile approach to digital programmes will not transform Whitehall unless the waterfall approach to policy and decision-making is overhauled too  Continue Reading

• The digital opportunity for CIOs

  CIOs have a unique opportunity to lead the digital strategy in their organisations, but they have to move quickly to make sure they have the right skills and infrastructure in place  Continue Reading

• The top 10 myths about agile development

  Examining some of the most common misconceptions in the growing field of agile software development  Continue Reading