risk management

EU cyber security bill NIS2 hits compliance deadline

The European Union’s (EU) landmark cyber security bill NIS2 has come into full force, meaning companies must now comply with its requirements or face hefty fines. Under the directive, which aims to harmonise cyber security rules and procedures across the bloc, EU-based businesses operating in critical sectors – including energy, transport, water, financial services and healthcare…

EU cyber security bill NIS2 hits compliance deadline Read More »

Cyber firms need to centre their own resilience

Information security is essentially an information risk management discipline. By rendering many information systems inoperable, the global outage precipitated by Crowdstrike prevented several companies from accessing critical business information due to unplanned and extended downtime. The unavailability was not only to information systems, but also to related information processing. It was not only an information…

Cyber firms need to centre their own resilience Read More »

Q&A: Adalbjorn Thorolfsson on IT project management in Iceland

The Icelandic Project Management Association was founded in 1984 by engineers and, as such, was initially focused on engineering projects. As project management evolved and became used in more sectors, such as information technology, healthcare, finance and the public sector, the composition of the members of the association and the board changed accordingly. Adalbjorn Thorolfsson…

Q&A: Adalbjorn Thorolfsson on IT project management in Iceland Read More »

Best practices to beat container misconfiguration

While misconfigured containers are a major challenge in cloud security, this can often be traced to shortcuts to cloud and containerisation divorced from the overall strategy. Focus on technical and tactical migrations, or even managing revenues, can be to the detriment of risk management and business results, with Drew Firment, chief cloud strategist at learning…

Best practices to beat container misconfiguration Read More »

97 FTSE 100 firms exposed to supply chain breaches

Of the 100 organisations listed on the Financial Times Stock Exchange (FTSE) 100 list of Britain’s most highly capitalised firms, 97 were exposed to a third-party supply chain data breach incident between March 2023 and March 2024, according to data published by SecurityScorecard ahead of the annual Infosec Europe fair. The findings, which come as…

97 FTSE 100 firms exposed to supply chain breaches Read More »

Cyber Safety Force wants to change conversation around risk

A group of like-minded cyber professionals who want to change how businesses think about threat defence and risk management have banded together to launch a new platform, the Cyber Safety Force (CSF), with the aim of moving the conversation from cyber security to cyber safety. Spearheaded by Performanta founder Guy Golan, 2020 Partners founder Greg Sim, former…

Cyber Safety Force wants to change conversation around risk Read More »

Government insists it is acting ‘responsibly’ on military AI

The UK government insists it is already acting “responsibly” in the development of lethal autonomous weapons systems (LAWS) and military artificial intelligence (AI), following a warning from Lords to “proceed with caution”. However, critics say the government is failing to engage with alternative ethical perspectives, and that the response merely confirms its commitment to the…

Government insists it is acting ‘responsibly’ on military AI Read More »

Organisations failing to proactively address insider cyber risk

With the cost of insider risk the highest it’s ever been, cyber leaders are failing to direct their budgets towards effectively addressing the problem, spending less than 10% of their security budgets on measures that could solve a problem that now costs an average of $16.2m (£13.25m) every year. This is according to a newly…

Organisations failing to proactively address insider cyber risk Read More »

Top marks for graduates of CIISec vocational cyber course

Amid the annual tradition of A-level results day, the first students to sit a new Extended Project Qualification for young people aged 14 and up looking to start a career in cyber security have also been receiving their grades, with promising results. The first intake to the course comprised a total of 132 students –…

Top marks for graduates of CIISec vocational cyber course Read More »

ITAM influence on cyber risk becoming a factor in credit ratings

IT asset management (ITAM) and its relationship to good cyber security practice and risk management is becoming a vital element in determining an organisation’s ability to obtain credit, and those that lack an appropriate ITAM strategy may find their ratings adversely effected, according to credit ratings agency Standard & Poor’s (S&P) Global Ratings. In its…

ITAM influence on cyber risk becoming a factor in credit ratings Read More »

Shopping Cart
Shopping cart0
There are no products in the cart!
Continue shopping
0
Scroll to Top