Opinion

Opinion

Regulatory compliance and standard requirements

• Small business guide: How to keep your organisation secure from fraudsters and hackers

  Doing a few things well can keep your organisation protected from common cyber attacks and fraudsters  Continue Reading

• Security Think Tank: The operational approach to integrated risk management

  How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making?  Continue Reading

• Security Think Tank: Risk is unavoidable in digital transformation

  How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making?  Continue Reading

• Security Think Tank: Close interdisciplinary ties are key to security integration

  How can infosec professionals and data architects work together to support business goals and achieve a good level of cyber security?  Continue Reading

• Security Think Tank: CIA at heart of infosec-data architect partnership

  How can infosec professionals and data architects work together to support business goals and achieve a good level of cyber security?  Continue Reading

• Security Think Tank: Engage business to address commercial risk

  What strategies can infosec pros use to shift focus from GDPR fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Translating GDPR compliance into business benefits

  What strategies can information security professionals use to shift focus from General Data Protection Regulation fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Aligning data privacy with business objectives

  What strategies can infosec pros use to shift focus from GDPR fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Don’t dismiss the business benefits of GDPR

  What strategies can infosec pros use to shift focus from GDPR fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Align compliance objectives with business goals

  What strategies can information security professionals use to shift focus from GDPR fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Changing the GDPR focus to business benefit

  What strategies can information security professionals use to shift focus from General Data Protection Regulation fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Benefits of GDPR compliance

  What strategies can information security professionals use to shift focus from General Data Protection Regulation fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Security Think Tank: Embrace data protection as a necessary business process

  What strategies can information security professionals use to shift focus from GDPR fines to enabling business gains and success, changing the way data is used, and aligning data privacy with business purpose?  Continue Reading

• Is GDPR worth the cost?

  Regulations have costs, which are meant to be recouped by the expected benefits. But who decides whether this is a good deal? Ultimately, it’s you  Continue Reading

• Security Think Tank: Cyber attack survival not a matter of luck

  How should businesses plan to survive a potential cyber attack extinction event?  Continue Reading

• Mind the Brexit gap in cyber security

  Leaving the EU could mean a new cyber security regime for the UK – firms need to understand how the changes might affect them  Continue Reading

• Security Think Tank: Is it true you can't manage what you don't measure?

  What should be the key cyber security risk indicator for any business?  Continue Reading

• Wearable technology in the workplace and data protection law

  Wearable technology is slowly creeping into the workplace to monitor staff performance and health, but do employers understand the legal implications? We assess the data protection implications  Continue Reading

• Security Think Tank: Approach UTM with caution

  How can organisations best use unified threat management tools to help stem the tide of data breaches?  Continue Reading

• Security Think Tank: Many routes to UTM to boost security capabilities

  How can organisations best use unified threat management tools to help stem the tide of data breaches?  Continue Reading

• Brexit and data protection: What’s next?

  PA Consulting assesses how a no-deal Brexit would affect the flow of data from the UK into and out of Europe  Continue Reading

• How to prepare for the UK’s uncertain Brexit terms

  Analyst firm Gartner looks at the main business continuity plans that need to be in place  Continue Reading

• Security Think Tank: Meeting the security challenge of multiple IT environments

  How can organisations combine software defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network?  Continue Reading

• Can we live without passwords?

  Can you imagine a future in which we can be secure online without having to remember an unwieldly list of passwords? Solutions are emerging that could make passwords redundant, but there will be other security problems to resolve  Continue Reading

• Making the UK the safest place to live and work online

  Government, industry and individuals all have to play their part in enhancing cyber security practices  Continue Reading

• As data volumes grow, backup needs analytics, says StorageCraft CEO

  Backup appliance maker’s CEO says backup needs analytics so customers can prioritise restore of critical data in a world where volumes increase by 50% a year  Continue Reading

• Mitigating third-party cyber risks in a new regulatory environment

  GDPR and the NIS Directive increase the focus on managing cyber security throughout the supply chain. Organisations need to check their suppliers are compliant  Continue Reading

• Security Think Tank: Monitoring key to outcomes-based security

  What is the first step towards moving from a tick-box approach to security to one that is outcomes-based, and how can an organisation test if its security defences are delivering the desired outcome?  Continue Reading

• Customers need to be at the centre of GDPR plans

  Responding to a breach is not just about data, it is about taking care of, and protecting, customers  Continue Reading

• Security Think Tank: Use Cyber Essentials to kick-start outcomes-based security

  What is the first step towards moving from a tick-box approach to security to one that is outcomes-based and how can an organisation test whether its security defences are delivering the desired outcome?  Continue Reading

• Better the data you know – how GDPR is affecting UK tech companies

  As the dust settles from the General Data Protection Regulation, the implications for technology firms in the UK are becoming clearer  Continue Reading

• Security Think Tank: Outsource responsibility, not accountability

  What critical security controls can be outsourced and how do organisations, SMEs in particular, maintain confidence that they are being managed effectively and appropriately?  Continue Reading

• Security Think Tank: Risk tolerance key to security outsourcing policy

  What critical security controls can be outsourced, and how do organisations – SMEs in particular – maintain confidence that they are being managed effectively and appropriately?  Continue Reading

• Beyond GDPR: ePrivacy could have an even greater impact on mobile

  From how we monitor air pollution and manage our public transport systems, to how we enable connected cars and the next generation of 5G mobile services, the forthcoming ePR could have a lasting impact on European society  Continue Reading

• What the ICO's Facebook fine teaches us

  Legal expert Alexander Egerton considers whether the ICO’s planned £500,000 fine for Facebook is the precursor of a spate of increased fines across the board, or if it shows the ICO’s stance has not changed and will continue to target certain ...  Continue Reading

• Security Think Tank: Understand data for risk-based protection

  Why is it important to know where data flows, with whom it is shared and where it lives at rest, and what is the best way of achieving this?  Continue Reading

• Security Think Tank: Data controllers are essential in modern business environment

  Why is it important to know where data flows, with whom it's shared and where it lives at rest, and what is the best way of achieving this?  Continue Reading

• GDPR may not be perfect, but it’s an important milestone in data protection

  It's GDPR day, and TechUK's CEO Julian David writes about what is an important milestone in data protection in the digital world  Continue Reading

• It’s not too late to get GDPR ready

  With the GDPR compliance deadline on 25 May 2018, there is little time to get ready, but it is not too late, according to the IAPP, which provides a checklist to help organisations ensure they are in the best position possible for the deadline  Continue Reading

• Hacking the internet of things just got easier – it’s time to look at your security

  Are you taking security for internet-connected devices seriously enough?  Continue Reading

• Security Think Tank: Reducing dwell has never been more important

  Why is reducing cyber attacker dwell time important, and how should this be tackled?  Continue Reading

• Security Think Tank: GDPR compliance one good reason to cut attacker dwell time

  Why is reducing cyber attacker dwell time important, and how should this be tackled?  Continue Reading

• How a new ISO standard helps you take control of your IT assets

  The updated ISO standard 19770-1:2017 offers IT managers a way to bring their hardware and software assets under a single management standard  Continue Reading

• Why police forces need to be honest about mass mobile phone surveillance

  Police forces across the UK are covering up their use of sophisticated mass surveillance devices, known as IMSI-catchers - the Bristol Cable and Liberty are campaigning for proper transparency  Continue Reading

• 3, 2, 1, GDPR: How to be prepared on 25 May

  There are seven key areas organisations should review to ensure compliance with the General Data Protection Regulation, and even though the deadline is less than four months away, it is still not too late to start  Continue Reading

• Security Think Tank: Automating basic security tasks

  How can organisations evolve their security operations teams to do more automation of basic tasks and cope with dynamic IT environments?  Continue Reading

• A guide for businesses to China’s first cyber security law

  Companies that break China’s new cyber security law may be fined or even have their licence to trade in the country removed  Continue Reading

• Criminal law: Are Twitter threats taken seriously?

  As threats of violence become increasingly common online, law enforcement is taking stronger action against the perpetrators  Continue Reading

• Six essential processes for keeping data secure

  Data security is increasingly vital for organisations as the countdown begins for compliance with new rules imposed by the EU’s general data protection regulation  Continue Reading

• Life’s a breach: How to handle the press after a hacking attack

  Emily Dent, specialist in crisis PR, offers some advice to organisations that unexpectedly find themselves in the headlines  Continue Reading

• Can legislation stop cyber crime?

  Rising cyber crime suggests criminal law does not deter criminals and that a better legal solution is required to prevent further rises  Continue Reading

• The legal considerations of the internet of things

  As with many new technologies, there are a number of tricky legal challenges to consider as part of widespread IoT adoption  Continue Reading

• Should you allow a bring your own device policy?

  Employers are realising there are challenges presented by BYOD which, if not dealt with, could have a serious impact on the business  Continue Reading

• Who owns your LinkedIn account?

  It is common for employees to use personal social networking accounts for work, but who actually owns those accounts?  Continue Reading

• The challenges of information governance in our increasingly litigious age

  Formulating the right enterprise-wide information governance policies is essential in heading off potential legal and compliance costs  Continue Reading

• Securing the hypervisor: expert tips

  There are many potential security issues with the various components of a virtualised infrastructure, and nowhere is this more of a concern than with the hypervisor platforms that host virtual systems and application instances  Continue Reading