Opinion

Opinion

IT security

• Security Think Tank: Awareness and incident response key to fighting evasive malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Business should assess where to use AI to sniff out smart malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: How to detect the undetectable?

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Malware infection is inevitable, so be prepared

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Addressing the malware arms race

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Human factor is key to defeating evasive malware

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Security Think Tank: Blended attacks require blended defences

  How can businesses best prepare their cyber defences in light of the fact that attackers are increasingly using malware designed to evade detection and analysis?  Continue Reading

• Prism and the law: The state of play in August 2016

  Computer Weekly assesses the history, legal aspects and latest developments in the story of the mass surveillance programme launched by the US National Security Agency  Continue Reading

• Data breaches: Different regions, very different impacts

  The cost, scrutiny and pressure of dealing with a data breach will become more apparent in the near future as European legislation takes effect  Continue Reading

• Security Think Tank: Brexit – An opportunity for infosec pros to take the lead

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• It’s not too late to turn the tide on Investigatory Powers Bill

  The government has set David Anderson QC an almost impossible task in his review of the sweeping bulk powers proposed in the Investigatory Powers Bill – but it is not too late to make a difference  Continue Reading

• Security Think Tank: Forget Brexit, use GDPR to foster customer relationships

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Queen’s Gambit – Brexit implications for infosec pros

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit – An opportunity to clean house

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Infosec should not focus on Brexit at the expense of the here and now

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit – a mix of challenges and opportunities for infosec

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• Security Think Tank: Brexit and infosec – for now it’s business as usual

  What are the pros and cons of the UK leaving the EU for information security professionals and data protection?  Continue Reading

• Security Think Tank: EU data security principles apply, regardless of Brexit

  What are the pros and cons of Brexit for information security professionals and data protection?  Continue Reading

• A day in the life of the Investigatory Powers Tribunal

  Britain's most secretive court combined the surreal with the deadly serious, as it debated the legality of bulk data collection by MI5, MI6 and GCHQ  Continue Reading

• Consumer identity management is the core of real CRM

  IAM + CRM is much more than simply IAM for external users, says Ivan Niccolai  Continue Reading

• Six essential processes for keeping data secure

  Data security is increasingly vital for organisations as the countdown begins for compliance with new rules imposed by the EU’s general data protection regulation  Continue Reading

• Privacy Shield gets green light – for now

  Privacy Shield faces inevitable legal challenges, so organisations should prepare by considering legal and practical alternatives  Continue Reading

• Brexit offers chance for UK to become a ‘data haven’

  Could the UK become a a safe place for both cloud and big data after it leaves the EU?  Continue Reading

• What CIOs should know about Brexit

  CIOs should start talking with other executives and their teams and begin planning now for potential changes  Continue Reading

• What does Brexit mean for the digital economy?

  It has become increasingly clear that there is no plan beyond the Brexit, so what do we do now, asks Chi Onwurah, the shadow minister for business  Continue Reading

• Security Think Tank: Use biometric security at the right time and place

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• Security Think Tank: Biometrics have key role in multi-factor security

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• SMEs move into cyber criminals’ crosshairs

  The consequences of data breaches for small businesses are greater than ever, with data protection law becoming tougher just as SMEs are turning into a top target for cyber attackers  Continue Reading

• Security Think Tank: Practical biometrics in the enterprise

  How can organisations implement biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• A one-size-fits-all blockchain just won’t do

  With manifold use cases and specific requirements for blockchains, businesses will have to choose the right variety rather than deploy a single ‘interoperable’ blockchain  Continue Reading

• Security Think Tank: Research biometrics thoroughly before deploying

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• Security Think Tank: Proceed with caution on biometric authentication

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• Security Think Tank: A starter guide for biometrics in security

  How can organisations move to biometric authentication of users without running the risk of exposing sensitive biometric information?  Continue Reading

• Brexit and technology: How network effects will damage UK IT industry

  Although largely ignored in the Brexit debate, network effects will damage the UK's high-tech industry if Britain leaves Europe  Continue Reading

• Security Think Tank: Infosec pros need to identify and protect GDPR-relevant data

  What is the role of information security professionals in helping organisations to ensure they are compliant with the EU’s General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: Understanding compliance with the GDPR

  What is the role of information security professionals in helping organisations to ensure they are compliant with the EU’s General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: All aboard as European data regulation nears final station

  What is the role of information security professionals in helping organisations to ensure they are compliant with the EU’s General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: How infosec pros should influence prep for GDPR

  What is the role of information security professionals in ensuring organisations comply with the EU General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: Key GDPR issues for infosec pros to address

  What is the role of information security professionals in ensuring organisations comply with the EU General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: Infosec pros can kickstart GDPR prep with data audit

  What is the role of information security professionals in ensuring organisations comply with the EU General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Security Think Tank: Information security professionals have key role in GDPR compliance

  What is the role of information security professionals in helping organisations to ensure they are compliant with the EU’s General Data Protection Regulation (GDPR) by 25 May 2018?  Continue Reading

• Managing open-source security: a legal perspective

  Open-source software is being used more widely than ever – but do IT leaders understand the legal risks?  Continue Reading

• Israel’s cyber security frontier

  The Israeli city of Beer Sheva is quickly becoming a global centre of cyber security technology  Continue Reading

• Security Think Tank: Internal up-skilling key to tackling cyber security skills shortage

  What strategies can organisations use to ensure that they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• Security Think Tank: Guidelines for improving the effectiveness of IT security recruitment

  What strategies can organisations use to ensure that they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• The European Cloud Initiative: A silver lining for data sharing?

  The European Commission has published proposals for a new cloud initiative – part of a package of measures designed to enhance the EU’s position in the global, data-driven economy  Continue Reading

• Security Think Tank: Identifying, attracting and keeping the right IT security talent

  What strategies can organisations use to ensure that they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• Fear, uncertainty and data doubt hold back public Wi-Fi

  Venue owners’ uncertainty and befuddlement over what they can actually do with their Wi-Fi infrastructure and the data carried over it is hindering their ability to realise the full potential of public Wi-Fi  Continue Reading

• Security Think Tank: Focus IT security recruitment on risk management

  What strategies can organisations use to ensure that they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• Privacy Shield: Imperfect and incomplete

  Adoption of Privacy Shield is unlikely before June 2016, and the scheme is likely to be challenged by national data protection authorities and individuals, writes Huw Beverley-Smith  Continue Reading

• Security Think Tank: HR and IT security collaboration key to skills crisis

  What strategies can organisations use to ensure they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• Security Think Tank: Strategies for meeting cyber security skills needs

  What strategies can organisations use to ensure they are able to hire the information security professionals they need and that good candidates are not being missed or overlooked?  Continue Reading

• Security Think Tank: Five tips for creating a patch management strategy

  What strategies can companies adopt to help keep up with and deal with the huge volume of software updates they are facing?  Continue Reading

• Security Think Tank: Security patching an essential element of outsourcing contracts

  What strategies can companies adopt to keep up and deal with the huge volume of software updates they face?  Continue Reading

• Security Think Tank: Allocate maintenance processes to each piece of key software

  What strategies can companies adopt to help keep up with and deal with the huge volume of software updates they are facing?  Continue Reading

• Security Think Tank: Using vulnerability management to support the patching process

  What strategies can companies adopt to deal with the huge volume of software updates they are facing?  Continue Reading

• Security Think Tank: Tackle vital patching challenge with risk-based approach

  What strategies can companies adopt to help keep up with and deal with the huge volume of software updates they are facing?  Continue Reading

• Security Think Tank: Six alternative strategies to centralised security patching

  What strategies can companies adopt to help keep up with and deal with the huge volume of software updates they are facing?  Continue Reading

• Security Think Tank: Five strategies for dealing with software security updates

  What strategies can companies adopt to keep up with, and deal with, the huge volume of software updates they face?  Continue Reading

• Security Think Tank: Software patching needs executive sponsorship

  What strategies can companies adopt to keep up with, and deal with, the huge volume of software updates they face?  Continue Reading

• Security Think Tank: Ignoring software patching spells trouble

  What strategies can companies adopt to help keep up with and deal with the huge volume of software updates they are facing?  Continue Reading

• Investigatory Powers Bill: What it means for UK tech startups

  The proposed Investigatory Powers Bill could prove damaging for innovative high-tech companies, writes Tirath Bansal, founder and CEO of internet startup myorb.com  Continue Reading

• Security Think Tank: Many breaches down to poor access controls

  In the modern business environment, what are the most common access control mistakes – and how best are these corrected?  Continue Reading

• Don’t think that Brexit will save you from the EU data protection rules

  The EU General Data Protection Regulation will still apply to UK companies dealing with the EU, regardless of whether the UK remains in the union  Continue Reading

• The problem with passwords: how to make it easier for employees to stay secure

  An organisation’s IT security can be compromised if staff do not follow a strict policy of using strong passwords to access internal systems  Continue Reading

• Are cloud users worrying about nothing when it comes to data sovereignty?

  With the upheaval surrounding the EU-US Privacy Shield, Clive Longbottom takes a closer look at the issue of sovereignty  Continue Reading

• Security Think Tank: How to keep on top of access control

  In the modern business environment, what are the most common access control mistakes and how can these best be corrected?  Continue Reading

• Security Think Tank: Access control is key to protecting against cyber attacks

  In the modern business environment, what are the most common access control mistakes and how can these best be corrected?  Continue Reading

• Security Think Tank: Top five access control mistakes

  In the modern business environment, what are the most common access control mistakes and what is the best way to correct them?  Continue Reading

• Security Think Tank: Policies and procedures vital for successful access control

  In the modern business environment, what are the most common access control mistakes and what is the best way to correct them?  Continue Reading

• Security Think Tank: Password management tops list of access control issues

  In the modern business environment, what are the most common access control mistakes and how best are these corrected?  Continue Reading

• Security Think Tank: Human factor key to access control

  In the modern business environment, what are the most common access control mistakes and how best are these corrected?  Continue Reading

• Security Think Tank: Ransomware defence requires focus on three key areas

  What is the best strategy for business to protect against ransomware?  Continue Reading

• Security Think Tank: Three-pronged approach to defend against ransomware

  Ransomware is becoming increasingly prevalent in the world of cyber crime. What is the best strategy for businesses to protect against it?  Continue Reading

• Security Think Tank: Ransomware exploits poor security practice in SMEs

  What is the best strategy for business to protect against ransomware?  Continue Reading

• Security Think Tank: Four steps for companies to protect against ransomware

  What is the best strategy for business to protect against ransomware?  Continue Reading

• Security Think Tank: Employee awareness key to halting ransomware attacks

  What is the best strategy for business to protect against ransomware?  Continue Reading

• Security Think Tank: User education is first line of defence against ransomware

  What is the best strategy for business to protect against ransomware?  Continue Reading

• Floods reveal weaknesses in the resilience of UK broadband

  December’s floods exposed a major flaw in the UK’s fibre to the cabinet networks, which are almost impossible to waterproof  Continue Reading

• When a slowdown in IT budgets is a good thing

  IT budgets will grow at their slowest rate for four years in 2016, yet companies are spending more on digital technology  Continue Reading

• Saving Bletchley Park: The women of Station X

  Sue Black recalls her first experience of Bletchley Park and the women who worked there, inspiring a campaign to save the home of the WW2 codebreakers  Continue Reading

• Security Think Tank: Get business value from security testing services by insourcing

  How can an organisation ensure it gets value from penetration and security testing services?  Continue Reading

• Security Think Tank: Start with threats to increase value of penetration testing

  How can an organisation ensure it gets value from penetration and security testing services?  Continue Reading

• Security Think Tank: Selecting the right pen tester helps deliver most value

  How can an organisation ensure they get value from penetration and security testing services?  Continue Reading

• Security Think Tank: Penetration testing still relevant, but approach needs to change

  How can an organisation ensure it gets value from penetration and security testing services?  Continue Reading

• Security Think Tank: Pen testing must be followed by action

  How can an organisation ensure they get value from penetration and security testing services?  Continue Reading

• Security Think Tank: Clarity of scope is key to getting value from pen testing

  How can an organisation ensure they get value from penetration and security testing services?  Continue Reading

• Security Think Tank: Pen testing should be about risk, not box-ticking

  How can organisations ensure they get value from penetration and security testing services?  Continue Reading

• Security Think Tank: Classification is the first step to personal data security

  How should businesses go about setting up and maintaining a comprehensive and accurate inventory of personal data?  Continue Reading

• Security Think Tank: Find out what personal data your company holds

  How should businesses go about setting up and maintaining a comprehensive and accurate inventory of personal data?  Continue Reading

• Security Think Tank: Create a data security culture to keep data safe

  How should businesses go about setting up and maintaining a comprehensive and accurate inventory of personal data?  Continue Reading

• Security Think Tank: Three steps to personal data security

  How should businesses go about setting up and maintaining a comprehensive and accurate inventory of personal data?  Continue Reading

• Security Think Tank: IAOs key to setting up asset registers

  How should businesses go about setting up and maintaining a comprehensive and accurate inventory of personal data?  Continue Reading

• What does the new EU data protection regime mean for datacentres and cloud service operators?

  Changes to European data protection law will put new responsibilities on datacentre and cloud providers  Continue Reading

• Can the IT department fix personal data?

  Disruptive technologies can help solve the problem of managing personal data, but IT needs to team up with marketing and finance teams to make it work  Continue Reading

• Security Think Tank: Threat intelligence feeds not for everyone

  What is the best practice for collecting and using threat indicators from security incidents to improve defences against future cyber attacks?  Continue Reading

• Government must listen to tech sector in Investigatory Powers Bill

  Plans for new powers to allow intelligence agencies to monitor electronic communications must be carefully thought through  Continue Reading

• Security Think Tank: Security intelligence is useful only if isolated from the noise

  What is best practice for collecting and using threat indicators from security incidents to improve defences against future cyber attacks?  Continue Reading

• Supercharging cyber security protection: Questions to ask when hiring a managed services provider

  With information security concerns and challenges at an all-time high, and a global shortage of security professionals to address them, some enterprises are turning to managed security services for help. To ease the selection process, Dragana Vranic...  Continue Reading

• Security Think Tank: Security intelligence demands getting the basics right

  What is the best practice for collecting and using threat indicators from security incidents to improve defences against future cyber attacks?  Continue Reading