IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
News
01 May 2025
Harrods becomes latest UK retailer to fall victim to cyber attack
Harrods confirms it has become latest UK retailer to experience a cyber attack, shutting off a number of systems in an attempt to lessen the impact. Continue Reading
-
Opinion
01 May 2025
Signalgate: Learnings for CISOs securing enterprise data
A leak of information on American military operations caused a major political incident in March 2025. The Security Think Tank considers what can CISOs can learn from this potentially fatal error. Continue Reading
-
News
08 Jan 2020
Half of UK citizens want tighter data regulations
Over 50% of UK citizens believe the gathering and use of personal data should be subject to more stringent government oversight, according to Fujitsu Continue Reading
-
News
07 Jan 2020
Government confirms IR35 private sector reforms under review ahead of April 2020 start date
Government honours pledge to embark on a review of its plans to extend the IR35 off-payroll rules to the private sector that will focus on ensuring the changes are introduced in a “smooth” way in April 2020 Continue Reading
-
News
07 Jan 2020
Broadcom flogs Symantec enterprise security unit to Accenture
Acquisition is set to make Accenture a global leader in managed cyber security services Continue Reading
-
News
06 Jan 2020
Cyber gangsters demand payment from Travelex after ‘Sodinokibi’ attack
Cyber criminals are demanding payment to decrypt Travelex’s computer files after a devastating malware attack. New questions have been raised about the security of Travelex’s computer network after it emerged the company waited eight months to patch vulnerable VPN servers Continue Reading
-
News
03 Jan 2020
Suspected ransomware attack causes worldwide disruption for Travelex
Travelex switches off computer systems and resorts to cash-only currency sales after malware attack. Insiders claim the currency exchange chain has been hit by ransomware which has left critical files containing customer data encrypted Continue Reading
-
News
02 Jan 2020
Google Health pioneers breast cancer AI scanning
An algorithm developed by Google Health promises to reduce the likelihood of patients being wrongly diagnosed, and improve abnormal mammogram scan identification Continue Reading
-
News
02 Jan 2020
California’s CCPA an opportunity for security industry to do better
California’s consumer protection and data privacy laws came into effect on 1 January 2020, and present a golden opportunity for the cyber security practitioners Continue Reading
-
News
02 Jan 2020
Interview: Why we need a GDPR for dead people
Back in 2000, there was no Facebook or Twitter and the smartphone revolution had not begun. Today, digital identities outlive the people they represent Continue Reading
-
News
31 Dec 2019
Top 10 investigative stories of 2019
Here are Computer Weekly’s top 10 investigative stories of 2019 Continue Reading
-
News
24 Dec 2019
Top 10 software development stories of 2019
Here are Computer Weekly’s top 10 software development stories of 2019 Continue Reading
-
News
20 Dec 2019
Loan charge review results: Government agrees to policy amendments to cut tax bills of 30,000 people
The government has announced a package of amendments to the loan charge policy that will remove 11,000 people from its scope, and cut the tax bills of 30,000 others Continue Reading
-
News
19 Dec 2019
EU court opinion finds EU-US data transfers lawful but raises questions over Privacy Shield
The Advocate General of the European Court says standard contractual clauses are lawful, but raises questions over the impact of US surveillance on the legality of Privacy Shield Continue Reading
-
News
19 Dec 2019
New UK government pledges to accelerate gigabit broadband delivery
New Conservative government’s Queen’s Speech reaffirms commitment to providing gigabit broadband access across the UK, but provides no specific timetable to meet commitments and targets Continue Reading
-
News
19 Dec 2019
Top 10 artificial intelligence stories of 2019
Here are Computer Weekly’s top 10 artificial intelligence stories of 2019 Continue Reading
-
Feature
19 Dec 2019
Human factors are critical to securing digital transformation
Sourcing the latest cyber security technology to support digital transformation projects is all well and good, but it’s meaningless if you fail to address your organisational culture and the people within it Continue Reading
-
News
18 Dec 2019
European Court of Justice rules that under-licensing is IP theft
Ruling from the European Court of Justice says that French mobile operator, Free Mobile, infringed the copyright of software company IT development Continue Reading
-
News
18 Dec 2019
Major US tech companies named in lawsuit over mining deaths of Congolese children
Multinational technology companies have been accused of knowingly benefiting from human rights abuses in the Democratic Republic of Congo Continue Reading
-
Feature
17 Dec 2019
What are the key issues facing healthcare CIOs?
Six healthcare IT leaders give their views on the major challenges for digital transformation across the NHS Continue Reading
-
News
17 Dec 2019
Subpostmasters proved right on IT system failures as calls for full public inquiry mount
Post Office has been “in denial” about the robustness of its core retail system, which a judge said was to blame for problems experienced by subpostmasters in a multimillion-pound group action Continue Reading
-
News
13 Dec 2019
Alarm bells ring, the IoT is listening
With Christmas bearing down on us, a series of vulnerability disclosures has drawn attention to the parlous state of IoT security, and serves as a timely warning to people planning to buy smart devices as gifts Continue Reading
-
News
13 Dec 2019
New government faces calls to urgently deliver on pre-election pledge to review IR35 reforms
Contracting groups and trade associations say prime minister Boris Johnson must deliver on his party’s pledge to review the IR35 reforms and allay fears that it was an empty promise made to secure votes Continue Reading
-
Opinion
13 Dec 2019
Security Think Tank: Data-centric security requires context and understanding
The belief that effective perimeter security is the best way to protect data is a fallacy that is being repeatedly exposed. We must recognise the need for a data-centric security model to protect data from both internal and external threats, but what does this mean for security professionals? Continue Reading
-
News
13 Dec 2019
Subpostmasters got the best deal possible in legal battle with the Post Office, says lawyer
Subpostmasters ended their legal battle with the Post Office at the optimal time, according to the lawyer that managed the High Court action Continue Reading
-
Opinion
13 Dec 2019
Top tips for avoiding and dealing with data breaches
Been hacked, lost a laptop or sent an email to the wrong address? Do you need to notify anyone and what should you do? Find out in this simple guide Continue Reading
-
E-Zine
12 Dec 2019
CW Europe: Deutsche Bank creates innovation division
German banking giant Deutsche Bank is opening a division focused on innovation which will be led by former SAP executive Bernd Leukert. It will create agile teams with business and infrastructure divisions leading teams of technologists, using agile principles. Also read why China’s Huawei has offered governments an anti-industrial espionage commitment, and how software robots are helping social workers in Sweden. Continue Reading
-
News
11 Dec 2019
Lloyd's of London secures £300m for digital transformation
Lloyd's of London has secured funding for a modernisation programme that will start next year Continue Reading
-
Opinion
11 Dec 2019
How CI/CD helps digital organisations
Developments in technology have transformed IT management practices. We discuss the management implications of using CI/CD to drive digitisation initiatives Continue Reading
-
News
11 Dec 2019
Post Office settles legal dispute with subpostmasters, ending 20-year battle for lead claimant
The Post Office has settled its long-running legal dispute with subpostmasters, and will pay £57.75m in damages Continue Reading
-
Opinion
11 Dec 2019
Security Think Tank: Risk-based response critical to protect data
The belief that effective perimeter security is the best way to protect data is a fallacy that is being repeatedly exposed. We must recognise the need for a data-centric security model to protect data from both internal and external threats, but what does this mean for security professionals? Continue Reading
-
News
10 Dec 2019
Scottish Justice Committee wants extra powers for biometrics commissioner
Members of Scottish Parliament in the Justice Committee have welcomed the creation of a biometrics commissioner for Scotland, but want ensure that they have the ‘necessary teeth’ for the job Continue Reading
-
News
09 Dec 2019
US Department of Justice orders Ericsson to pay $1bn fine to settle bribery case
Swedish comms tech giant admitted what US attorney described as “years-long campaign of corruption in five countries to solidify its grip on telecommunications business” Continue Reading
-
News
06 Dec 2019
Dutch government must sort IT mess as priority
Dutch government lacks the knowledge and skills for its own IT strategy, according to scathing report Continue Reading
-
Opinion
05 Dec 2019
Security Think Tank: Time for a devolution of responsibility
The belief that effective perimeter security is the best way to protect data is a fallacy that is being repeatedly exposed. We must recognise the need for a data-centric security model to protect data from both internal and external threats, but what does this mean for security professionals? Continue Reading
-
News
05 Dec 2019
Huawei mounts legal challenge to US subsidy programme ban
Chinese tech giant fights back against FCC ban on carriers in the rural US from using the Universal Service Fund to buy its equipment and designation as threat to US national security Continue Reading
-
Opinion
04 Dec 2019
Security Think Tank: Optimise data-centric strategies with AI
The belief that effective perimeter security is the best way to protect data is a fallacy that is being repeatedly exposed. We must recognise the need for a data-centric security model to protect data from both internal and external threats, but what does this mean for security professionals? Continue Reading
-
News
03 Dec 2019
General Election 2019: Which manifesto is best for the UK’s tech sector?
Computer Weekly breaks down each political party’s technology policies ahead of the upcoming General Election to see how they compare Continue Reading
-
Opinion
03 Dec 2019
Cyber security: How to avoid a disastrous PICNIC
Fieldfisher’s David Lorimer examines how individual employees often facilitate cyber attacks, and what can be done to reduce the risk Continue Reading
-
Opinion
03 Dec 2019
Liberal Democrats: We want to lead the world in ethical, inclusive technology
Layla Moran, Liberal Democrat MP and party spokesperson for digital, culture, media and sport, writes about the party's technology policies ahead of the upcoming General Election Continue Reading
-
News
03 Dec 2019
Survey finds most firms don’t respond to GDPR requests in time
Most organisations do not respond to requests for GDPR data in the one month allowed, while many return incorrect data. The education sector does best, but the public sector lags behind Continue Reading
-
News
03 Dec 2019
Chinese web users take more risks than Brits or Americans
A research paper published by the University of Birmingham seems to show that differences in cultural values have an impact both on risky behaviour online and legal regulation Continue Reading
-
Opinion
28 Nov 2019
Ensuring your supplier onboarding process doesn’t undercut small suppliers
Given the unprecedented speed of global business, many companies are increasingly dependent on a great many third-party suppliers Continue Reading
-
News
28 Nov 2019
TSB neglected to assess capabilities of main IT provider in its failed system migration
TSB failed to properly assess and manage the internal service provider that lead its botched IT migration Continue Reading
-
Feature
28 Nov 2019
Five essential steps to a sound disaster recovery plan
We walk through the key steps to develop a disaster recovery plan – from risk assessment and setting recovery objectives, to the plan itself and a testing regime to keep it fresh Continue Reading
-
News
28 Nov 2019
Conservatives urged to join Labour, Lib Dems and SNP in committing to post-election IR35 review
With several major political parties making pre-election pledges to conduct a review of the IR35 tax avoidance reforms, pressure is growing on the Tories to follow suit Continue Reading
-
News
28 Nov 2019
General Election 2019: the Scottish National Party’s technology policies and digital plans
With the UK gearing up for its third General Election in four years, Computer Weekly outlines the Scottish National Party’s main technology policies and digital plans, as laid out in its manifesto Continue Reading
-
Opinion
27 Nov 2019
The super-resilient organisation
We need to build super-resilient organisations that can not only survive in a tempestuous world, but become energised by it Continue Reading
-
News
26 Nov 2019
Facebook undermined rivals in bid to dominate global messaging
Facebook used buyouts and bullying tactics towards competitors to grow its business empire, documents leaked to Computer Weekly reveal Continue Reading
-
News
25 Nov 2019
General Election 2019: The Lib Dems’ technology policies and digital plans
With the UK gearing up for its third General Election in four years, Computer Weekly outlines the Liberal Democrat Party’s main technology policies and digital plans, as laid out in its manifesto Continue Reading
-
News
22 Nov 2019
Mystery surrounds leak of four billion user records
Threat researchers uncover four billion user records on a wide-open Elasticsearch server but who left them there is a mystery Continue Reading
-
News
22 Nov 2019
Court of Appeal dismisses Post Office application to appeal damning judgment
The Court of Appeal has rejected a Post Office application to appeal judgments made in the first trial of its multimillion-pound battle with subpostmasters over IT system failures. Continue Reading
-
News
22 Nov 2019
IT chiefs recognise the risks of artificial intelligence bias
Artificial intelligence promises to change the way businesses operate. IT leaders are now taking bias in AI algorithms seriously Continue Reading
-
News
22 Nov 2019
TSB tech woes continue with overnight systems failure
TSB customers have experienced problems receiving money into their accounts due to an IT error, just days after the bank was slammed in a report on its IT problems last year Continue Reading
-
Opinion
22 Nov 2019
Digital advancement means we're measuring the economy wrong
When accountants work out how much UK business is investing in the future, it's stuck in a world of depreciated assets – ignoring the huge changes brought about by cloud and software as a service Continue Reading
-
Feature
21 Nov 2019
SME disaster recovery made easy with cloud, hybrid and HCI
Disaster recovery is a lot easier for small businesses than it used to be, with use of the cloud, hybrid cloud, physical and virtual appliances, and hyper-converged infrastructure all among the choices on offer Continue Reading
-
News
20 Nov 2019
Massive increase in fraud attacks on TSB customers during IT meltdown
There was a massive spike in attempts by fraudsters to steal from TSB customers when the bank’s IT systems failed in 2018 Continue Reading
-
News
20 Nov 2019
Conservatives slammed over social media trickery
The Conservative Party has been caught spreading online disinformation during the General Election campaign for a second time Continue Reading
-
News
19 Nov 2019
Public sector risks downplayed by senior IT leaders
Sophos reveals a significant cyber security perception gap between senior IT and security leaders in the public sector and their front-line teams Continue Reading
-
News
19 Nov 2019
Trade associations dial down anger on Labour’s broadband plans
Anger at the Labour Party’s proposals on full-fibre broadband have persisted, but more nuanced views have emerged from fibre associations Continue Reading
-
News
18 Nov 2019
Microsoft increases data protection for enterprises following Dutch MoJ audit
Last year’s audit by the Dutch Ministry of Justice and Security got the attention of the European Data Protection Supervisor. Now Microsoft has reacted Continue Reading
-
News
12 Nov 2019
PCI DSS payment security compliance drops again
Worldwide, barely one-third of companies are maintaining full compliance with the PCI DSS security standard – and the numbers are falling Continue Reading
-
News
12 Nov 2019
Shared responsibility model key to solving 5G security problem
Both buyers and sellers need to cooperate to solve the thorny issues around 5G security Continue Reading
-
News
11 Nov 2019
Major report on TSB IT disaster expected soon
A damning report into the 2018 IT disaster at TSB is expected to heavily criticise executives when it is published in November Continue Reading
-
News
08 Nov 2019
Morrisons in new appeal over data breach fine
The Supreme Court has heard an appeal from retailer Morrisons as it attempts to overturn prior judgments holding it liable for a 2014 leak of employee data Continue Reading
-
Opinion
07 Nov 2019
Security Think Tank: Cloud security is a shared responsibility
Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security professionals best work with their teams and cloud providers to resolve the problem? Continue Reading
-
News
06 Nov 2019
Trend Micro insider breach exposes need for data-centric protection
Simple measures could have saved consumer security product supplier from insider breach Continue Reading
-
News
06 Nov 2019
Lawmakers study leaked Facebook documents made public today
Computer Weekly publishes cache of leaked documents disclosed to Congress Continue Reading
-
Opinion
05 Nov 2019
Security Think Tank: The cloud needs security by design
Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security professionals best work with their teams and cloud providers to resolve the problem? Continue Reading
-
News
05 Nov 2019
ICO launches data security campaign for UK General Election
Information commissioner Elizabeth Denham launches campaign to remind the public of their rights when personal data is used for political purposes Continue Reading
-
Opinion
04 Nov 2019
Security Think Tank: Secure the cloud when negotiating contracts
Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security professionals best work with their teams and cloud providers to resolve the problem? Continue Reading
-
Feature
04 Nov 2019
Making the case for integrated risk management
Security experts discuss how an integrated approach to risk and governance can be effectively managed Continue Reading
-
News
04 Nov 2019
NHS Digital hit with £4.3m IR35-related tax bill after using HMRC CEST tool to assess contractors
The digital arm of the NHS used HMRC's much-maligned online tool to assess contractors, only for the tax agency to call into question its IR35 determinations and hit it with a tax bill totalling £4.3m Continue Reading
-
Opinion
01 Nov 2019
Security Think Tank: In the cloud, the buck stops with you
Misconfigured cloud environments are increasingly identified as the source of damaging data breaches and leaks, raising serious questions for enterprises. Where does responsibility for data security in the cloud lie, and how can security professionals best work with their teams and cloud providers to resolve the problem? Continue Reading
-
News
30 Oct 2019
What will succeed the National Cyber Security Strategy?
As the National Cyber Security Strategy nears the end of its working life, the government is considering what comes next, and is asking probing questions of its successes and failures Continue Reading
-
News
29 Oct 2019
NordVPN enlists ethical hackers, launches bug bounty programme
Breached consumer VPN supplier details steps it is taking to shore up its cyber security posture after an unknown actor gained access to one of its servers Continue Reading
-
Opinion
28 Oct 2019
Security Think Tank: Embedding security in governance
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making? Continue Reading
-
Feature
28 Oct 2019
Security puzzle calls for some joined-up thinking
The age of digitisation brings new risks to organisations, so security needs to be more integrated Continue Reading
-
Opinion
23 Oct 2019
Gartner: Three Barriers to AI Adoption
CIOs are set to include artificial intelligence in their IT strategy. Technical, legislative and cultural challenges could influence their AI ambitions Continue Reading
-
News
23 Oct 2019
Take responsibility for cyber security basics, urges NCSC CEO
At the launch of its third annual review, NCSC head Ciaran Martin appealed for individuals and businesses to address the fundamentals of cyber security hygiene to help lighten the load Continue Reading
-
News
22 Oct 2019
Brexit: Withdrawal agreement lists EU IT data link beyond transition
Document lists system-to-system IT and network connectivity that will be required after the UK leaves the European Union Continue Reading
-
News
22 Oct 2019
Over-30s tend to do better at cyber security than younger colleagues
Attitudes to workplace cyber security differ by age group, but not in the way one might imagine, according to a new study by NTT Security Continue Reading
-
News
18 Oct 2019
Due diligence requires a flexible, standardised approach
A study has found that procurement professionals are not confident of the process for vetting new suppliers – but a one-size assessment approach does not fit all Continue Reading
-
Opinion
17 Oct 2019
Security Think Tank: Focus on metrics to manage risk
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision making? Continue Reading
-
Opinion
16 Oct 2019
Security Think Tank: Embed security professionals in your risk strategy
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making? Continue Reading
-
News
15 Oct 2019
UK government aims to measure success of digital initiatives
Responding to a critical parliamentary report on digital progress, the government has laid out plans to develop better metrics and to overhaul legacy IT Continue Reading
-
News
15 Oct 2019
Attackers hunt iPhone jailbreakers in click fraud campaign
Research by Cisco’s Talos threat intel unit has identified a new click fraud campaign targeting people looking to jailbreak their iPhone devices Continue Reading
-
Opinion
15 Oct 2019
Security Think Tank: Risk management must go beyond spreadsheets
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision making? Continue Reading
-
News
14 Oct 2019
Private equity swoops on Sophos
British cyber security star picked up by technology sector investors for $3.9bn Continue Reading
-
Podcast
14 Oct 2019
PCI DSS: Credit card data and what to expect from version 4.0
We preview October’s PCI Europe Community Meeting where attendees will discuss credit card payment data, with topics covered likely to include the cloud and point-to-point encryption Continue Reading
-
Opinion
14 Oct 2019
Security Think Tank: Consider risk holistically, not just from an IT angle
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision making? Continue Reading
-
Feature
10 Oct 2019
Data management strategies are evolving – so must enterprises
A growing number of data-driven initiatives, alongside heightened demand for security in governance, data management and compliance, has led to the rise of a more holistic approach – integrated risk management Continue Reading
-
Opinion
09 Oct 2019
Security Think Tank: The operational approach to integrated risk management
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making? Continue Reading
-
News
08 Oct 2019
Dutch AI Coalition wants to put the Netherlands on artificial intelligence map
To ensure the Netherlands keeps pace in the artificial intelligence race, an AI coalition has been formed to help organisations in the sector to collaborate Continue Reading
-
Opinion
07 Oct 2019
Security Think Tank: Risk is unavoidable in digital transformation
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making? Continue Reading
-
News
04 Oct 2019
UK and US call on Facebook to walk back encryption plans
The US, Australian and UK governments have asked Facebook to ditch plans to deploy end-to-end encryption across Facebook Messenger, Instagram and WhatsApp Continue Reading
-
News
03 Oct 2019
Why data-driven applications need a governance framework
Data is the new oil – but without tight control, how can business determine that the data is valid? Data catalogues are back in vogue Continue Reading
-
News
03 Oct 2019
Cyber war as big a threat as nuclear war, says ex-RSA head Coviello
Former RSA chairman Art Coviello has been speaking about the devastating potential of cyber weapons, and warned that humanity must learn from history in order to control them Continue Reading
-
News
01 Oct 2019
A security breach is inevitable, IT leaders warned
No matter how much IT security tech and training is in place, sophisticated, targeted attacks are going to breach company defences, Carbon Black warns Continue Reading
-
News
01 Oct 2019
Singapore outlines initiatives to tackle OT and IoT security
The Cyber Security Agency of Singapore has developed a blueprint to secure operational technology systems in critical sectors, among other measures to secure cyber-physical systems and the internet of things Continue Reading
-
News
27 Sep 2019
GDPR compliance: Whose job is it and is it really possible?
Nobody seems to have a good handle on business GDPR compliance, how many businesses are compliant, or indeed what compliance really is, but according to security experts, it very much depends on who you talk to Continue Reading
-
News
26 Sep 2019
Instagram and WhatsApp – the new tools of social media propaganda
Facebook and Twitter have been cast as the villains of the piece, but social media disinformation and propaganda are evolving in new and alarming directions, say Oxford University researchers Continue Reading