Opinion

Opinion

IT security

• Security Think Tank: Enable people using good security and risk methodology

  How can organisations maintain usability and keep support costs low without compromising on security?  Continue Reading

• Security Think Tank: Minimise data to cut costs and comply with GDPR

  How can organisations maintain usability and keep support costs low without compromising on security?  Continue Reading

• PSD2 – time to open and secure APIs and rethink business models

  With the EU’s Payment Service Directive (PSD2) going into effect in January 2018, banks have no time to waste in preparing for the changes it will bring  Continue Reading

• Security Think Tank: Education and automation will up security and cut user friction

  How can organisations maintain usability and keep support costs low without compromising on security?  Continue Reading

• Security Think Tank: Practical steps to increasing security without reducing usability

  How can organisations maintain usability and keep support costs low without compromising on security?  Continue Reading

• Security Think Tank: Governance framework key to best security at lowest cost

  How can organisations maintain usability and keep support costs low without compromising on security?  Continue Reading

• Moving forward and looking back

  This is the fourth and last in a series of articles charting the progress of participants from HutZero, a new cyber security entrepreneur acceleration programme run by Cyber London (CyLon) and the Centre for Security Information Technologies (CSIT) ...  Continue Reading

• Most companies wide open to “cataclysmic” hack, especially after M&A

  Companies are leaving themselves wide open to cyber crime, especially after M&A, so companies need to start enabling cyber-security professionals before they face serious problems  Continue Reading

• Finance firms are vulnerable to cyber attacks, so why do customers think they are secure?

  The public are overly confident in the ability of banks and financial institutions to protect their data, but that will change when mandatory reporting comes in next year under the General Data Protection Regulation  Continue Reading

• The true impact of a cyber breach on share price

  As cyber security breaches become increasingly common, a security consultant explores how recent headline breaches have affected company valuations  Continue Reading

• Navigating those early stages: research in its many forms

  This is the third in a series of articles charting the progress of participants from HutZero, a new cyber security entrepreneur acceleration programme run by Cyber London (CyLon) and the Centre for Security Information Technologies (CSIT) at Queen’s...  Continue Reading

• From bootcamp to business: getting connected

  This is the second in a series of articles charting the progress of participants from HutZero, a new cyber security entrepreneur acceleration programme run by Cyber London (CyLon) and the Centre for Security Information Technologies (CSIT) at Queen’...  Continue Reading

• The internet of things: an overview

  Despite security and other concerns, there are many benefits associated with embracing the internet of things  Continue Reading

• Security Think Tank: Risk of DNS attacks goes beyond websites

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Why Azure developers need security skills

  The unprecedented adoption of Microsoft Azure is a huge opportunity for developers, but they must keep their security skills updated  Continue Reading

• Security Think Tank: Integrity of business data key to cyber defence

  What types of organisation are likely to be targeted by data integrity breaches and how best can they detect and mitigate against such attacks?  Continue Reading

• Government is quietly asking suppliers to pick up the tab for cyber security

  The government's new approach to working with cyber security suppliers is bringing a shift in responsibility and risk to the private sector  Continue Reading

• Security Think Tank: Three strategies against data integrity attacks

  What type of organisations are likely to be targeted by data integrity breaches, and how best can they detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Data integrity attack could happen to any company

  What type of organisations are likely to be targeted by data integrity breaches and how best can they detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Data custodians likely to be top targets of integrity attacks

  What types of organisation are likely to be targeted by data integrity breaches and how best can they detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Build in controls to protect against data integrity attacks

  What type of organisations is likely to be targeted by data integrity breaches and how best can they detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Data integrity breaches – the challenge facing banks

  What type of organisation is likely to be targeted by data integrity breaches and how best can they detect and mitigate such attacks?  Continue Reading

• Security Think Tank: Integrity attacks tough, but not impossible to spot

  What type of organisations is likely to be targeted by data integrity breaches and how best can they detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Under-the-radar data integrity attacks expected to rise

  What type of organisations are likely to be targeted by data integrity breaches, and how can they best detect and mitigate against such attacks?  Continue Reading

• Security Think Tank: Governance and oversight key to data integrity

  What type of organisations are likely to be targeted by data integrity breaches, and how can they best detect and mitigate against such attacks?  Continue Reading

• Nurturing a tech-literate generation

  The UK tech sector is leading the way in protecting children online, and helping to promote Safer Internet Day  Continue Reading

• European Commission announces initiatives on the data economy, e-Privacy and data protection

  The European Commission (EC) recently announced the final packages to be adopted under its Digital Single Market strategy: an initiative on the data economy and proposals for the review of the e-Privacy Directive and the protection of personal data  Continue Reading

• Is ‘OK’ OK? Delivering the next government network platform

  As GDS signals its intent to move away from the Public Services Network, the industry and public sector must work together to create a new internet-based network platform for government  Continue Reading

• Security Think Tank: Look to security best practices to secure DNS

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Security Think Tank: DNS, the underdog in cyber security strategy

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Security Think Tank: Use DNS proxy services to bolster security

  What are the main security risks associated with DNS, and how are these best mitigated?  Continue Reading

• Security Think Tank: Add risk of DNS attack to business continuity plan

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Security Think Tank: Business should arm against rise in DNS server attacks

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Security Think Tank: Top three DNS-related security risks

  What are the main security risks associated with the domain name system and how are these best mitigated?  Continue Reading

• Security Think Tank: Know the business risks of using the internet

  What are the main security risks associated with DNS and how are these best mitigated?  Continue Reading

• Inside the UK’s first cyber security entrepreneur boot camp

  This is the first in a series of articles charting the progress of participants from HutZero, a new cyber security entrepreneur acceleration programme run by Cyber London (CyLon) and the Centre for Security Information Technologies (CSIT) at Queen’s...  Continue Reading

• Security Think Tank: Simplify infosec messages: If not X, then Y and Z

  How can information security professionals help businesses to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: Communication is key to cyber security in digital era

  How can information security professionals help organisations to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: How to make cyber risk easier for business to understand

  How can information security professionals help businesses to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: Cyber risk not just an IT issue

  How can information security professionals help businesses to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: Cyber security must be recognised as a fundamental component of business

  How can information security professionals help organisations to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: Cyber security is everyone’s responsibility

  How can information security professionals help organisations to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Five tips to improve cyber security in the health sector

  Jocelyn Paulley, an IT lawyer at Gowling WLG, shares her top tips on how the NHS can “quick fix” its cyber resilience  Continue Reading

• Security Think Tank: Managing cyber risk requires genuine understanding

  How can information security professionals help businesses to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Security Think Tank: Cyber risk – Overlooked? Ignored? Under-appreciated?

  How can information security professionals help businesses to understand the cyber risks across increasingly digital businesses?  Continue Reading

• Is the information security supplier market really consolidating?

  Mergers and acquisitions continue at pace in the information security market, but these are not necessarily signs of consolidation, writes Martin Kuppinger  Continue Reading

• Fight against Investigatory Powers Bill may not be over

  Labour's shadow home secretary Diane Abbott says that wider society must now debate the controversial Investigatory Powers Bill, despite Parliamentary approval  Continue Reading

• Security Think Tank: Cyber insurance may not provide cover where it is most needed

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Ensure cyber insurance is right and helps reduce risk

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Lower insurance premiums through security certification

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Six key factors in cyber insurance

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Understand data assets and risks for insurance success

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Cyber insurance – factor in all costs and obligations

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Cyber insurance a great complement to good security practice

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• Security Think Tank: Back up risk assessment with broker advice on cyber insurance

  What should organisations consider if they are to prepare for cyber insurance?  Continue Reading

• New cyber security strategy changes relationship between government and IT suppliers

  The government has introduced stringent new responsibilities on IT suppliers in its latest cyber security strategy  Continue Reading

• Self-sovereign identity on the block – ideal or no deal?

  There’s a rumour out there in the IT and business world that blockchains could be the magic elixir when it comes to users’ full control and power over their own digital identities. But is that really so?  Continue Reading

• Getting the balance right now the big data genie is out the bottle

  Big data is a fact of life, but getting the balance right when it comes to privacy is crucial to avoid litigation and fines  Continue Reading

• Gary McKinnon: Why Lauri Love should be spared the nightmare of extradition

  Computer activist Lauri Love should be spared a life sentence in a US jail, says former hacker Gary McKinnon  Continue Reading

• The UK needs a data infrastructure

  Public data needs to be open and protected, and should be treated as part of our critical national infrastructure  Continue Reading

• Security Think Tank: Defend against phishing with training, technology and reporting

  What are the most effective types of security controls and user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Phishing: protect, educate and limit damage

  What are the most effective types of security controls and end user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Four key elements to defending against phishing attacks

  What are the most effective types of security controls and end user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Combine technology and communication to combat phishing risks

  What are the most effective types of security controls and end user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Three-pronged approach to phishing prevention

  What are the most effective types of security controls and end user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Making a game of phishing

  What are the most effective types of security controls and end user training approaches to dealing with phishing?  Continue Reading

• Security Think Tank: Phishing awareness a key element of a security positive culture

  What are the most effective types of security controls and user training approaches for dealing with phishing?  Continue Reading

• Investigatory Powers Bill – the case for mass surveillance

  As the Investigatory Powers Bill goes through its final stages in Parliament, a former GCHQ intelligence officer puts the case for the bulk surveillance powers contained in the legislation  Continue Reading

• A Good American: a personal take on mass surveillance

  Director Friedrich Moser draws some conclusions on mass surveillance from his groundbreaking documentary on the work of NSA whistleblower, Bill Binney  Continue Reading

• Security Think Tank: Awareness and incident response key to fighting evasive malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Business should assess where to use AI to sniff out smart malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: How to detect the undetectable?

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Malware infection is inevitable, so be prepared

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Addressing the malware arms race

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Human factor is key to defeating evasive malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Blended attacks require blended defences

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Prism and the law: The state of play in August 2016

  Computer Weekly assesses the history, legal aspects and latest developments in the story of the mass surveillance programme launched by the US National Security Agency  Continue Reading

• Data breaches: Different regions, very different impacts

  The cost, scrutiny and pressure of dealing with a data breach will become more apparent in the near future as European legislation takes effect  Continue Reading

• Security Think Tank: Brexit – An opportunity for infosec pros to take the lead

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• It’s not too late to turn the tide on Investigatory Powers Bill

  The government has set David Anderson QC an almost impossible task in his review of the sweeping bulk powers proposed in the Investigatory Powers Bill – but it is not too late to make a difference  Continue Reading

• Security Think Tank: Forget Brexit, use GDPR to foster customer relationships

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Queen’s Gambit – Brexit implications for infosec pros

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit – An opportunity to clean house

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Infosec should not focus on Brexit at the expense of the here and now

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit – a mix of challenges and opportunities for infosec

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit and infosec – for now it’s business as usual

  What are the pros and cons of the UK leaving the EU for information security professionals and data protection?  Continue Reading

• Security Think Tank: EU data security principles apply, regardless of Brexit

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• A day in the life of the Investigatory Powers Tribunal

  Britain's most secretive court combined the surreal with the deadly serious, as it debated the legality of bulk data collection by MI5, MI6 and GCHQ  Continue Reading

• Consumer identity management is the core of real CRM

  IAM + CRM is much more than simply IAM for external users, says Ivan Niccolai  Continue Reading

• Six essential processes for keeping data secure

  Data security is increasingly vital for organisations as the countdown begins for compliance with new rules imposed by the EU’s general data protection regulation  Continue Reading

• Privacy Shield gets green light – for now

  Privacy Shield faces inevitable legal challenges, so organisations should prepare by considering legal and practical alternatives  Continue Reading

• Brexit offers chance for UK to become a ‘data haven’

  Could the UK become a a safe place for both cloud and big data after it leaves the EU?  Continue Reading

• What CIOs should know about Brexit

  CIOs should start talking with other executives and their teams and begin planning now for potential changes  Continue Reading

• What does Brexit mean for the digital economy?

  It has become increasingly clear that there is no plan beyond the Brexit, so what do we do now, asks Chi Onwurah, the shadow minister for business  Continue Reading

• Security Think Tank: Use biometric security at the right time and place

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• Security Think Tank: Biometrics have key role in multi-factor security

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• SMEs move into cyber criminals’ crosshairs

  The consequences of data breaches for small businesses are greater than ever, with data protection law becoming tougher just as SMEs are turning into a top target for cyber attackers  Continue Reading

• Security Think Tank: Practical biometrics in the enterprise

  How can organisations implement biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• A one-size-fits-all blockchain just won’t do

  With manifold use cases and specific requirements for blockchains, businesses will have to choose the right variety rather than deploy a single ‘interoperable’ blockchain  Continue Reading

• Security Think Tank: Research biometrics thoroughly before deploying

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading