If you could print $200 million on your home printer each year, how would it affect the world economy? If all humans could avoid physical contact with each other for two weeks, would the common cold be eradicated? If every person on earth aimed a laser pointer at the moon, would the moon change color?…
LEARN MORESharp increase in the number and cost of cyber attacks Hiscox has released it third annual Cyber Readiness Report, providing an up-to-the-minute picture of the cyber readiness of organisations across the US and Europe, as well as a blueprint for best practice in the fight to counter the ever-evolving cyber threat. The report finds…
LEARN MORELeveraging Reusable Content to Expedite Third-Party Risk Reduction Efforts Storing your information security content and associated artifacts in a shareable network will stop the pandemonium, opening opportunities to reduce risk, and face resiliency head on. “Sharing is caring!” We all heard this phrase growing up and in today’s information security world it still proves to…
LEARN MOREPromoting a wider view of Third-Party risk The Financial Conduct Authority (FCA) has released its FCA Cyber Security – Industry Insights briefing paper, developed from the output of their Cyber Coordination Groups (CCGs) to aid the improvement of cyber security practices amongst members and help promote understanding and awareness of innovative cyber practices. The…
LEARN MOREThird-Party Risk and the Digitisation of the Public Sector The public sector handles some of the most private and sensitive personal data, including financial, health and social security records, and citizens have the right to expect it will be managed as safely and securely as possible. At the same time there is an ever-increasing…
LEARN MOREExercising Good Data Privacy and Compliance Judgement Those of us in the privacy profession knew it was only a matter of time that privacy-minded organisations would eventually see the benefits of their internal analysis and hard work. Their efforts to refine and/or create policies, procedures, standards and practices that better secure and guard privacy…
LEARN MOREIn November 2018 the Central Bank of Ireland published the discussion paper “Outsourcing” providing findings and Issues for discussion based upon observations derived from their survey of regulated firms and ongoing supervisory engagement, risk assessments and reviews. As the CBoI says themselves “These observations highlight the need to ensure outsourcing risk is a core priority…
LEARN MOREMassive data breach also gives rise to calls for stronger data protection legislation The ever-increasing line of corporate data breaches grew longer last week, as Marriott International disclosed that it had been the latest victim of a massive cyber-attack. On Friday, November 30th, 2018, Marriott announced the largest data breach in its history that compromised…
LEARN MOREAs cybersecurity programs become more integrated into enterprise risk management (ERM) programs, security professionals grapple with new issues. Rather than relying on fear, uncertainty and doubt (FUD) to fuel their business case for budget increases, cybersecurity leaders are striving to quantify the business impact and probability of cybersecurity events while evaluating new options, including cyber…
LEARN MOREShould cyber insurance cover GDPR fines? I see the interesting debate around whether GDPR fines should be covered within corporate cyber insurance policies has raised its head again. See Law360’s GDPR Fines May Be Uninsurable, Broker Warns and Are GDPR Fines Insurable? UK Watchdog Won’t Say With increasing regulation and scrutiny placed on organisations and…
LEARN MORE