ProtectComplyThrive
IT Governance Blog
  • About Us
  • Visit our Webshop
  • Menu
  • Blog Home
  • Business Continuity
  • Cyber Security
    • Cyber Essentials
    • ISO 27001
    • Risk Management
  • Data Protection
    • EU GDPR
  • IT Best Practice
    • ITIL/ITSM/ISO 20000
    • Project Management
  • IT Governance
    • COBIT
  • PCI DSS
  • Other Blogs
    • Book Reviews
    • Breaches and Hacks
    • Fighting Cyber Crime
    • Guest Posts
    • Podcast
    • Staff Awareness
    • Toolkits

Weekly podcast: Password managers, unpatched vulnerabilities, formjacking and Wendy’s

Lewis Morgan 21st February 2019 Cyber Security, Podcast
This week, we discuss a security flaw affecting 1Password, Dashlane, KeePass and LastPass; the prevalence of historic vulnerabilities in corporate IT systems; the increase in formjacking attacks; and Wendy’s $50 million data breach settlement. Hello, and welcome to the IT …
[Continue Reading...]

What is cyber resilience?

Luke Irwin 21st February 2019 Cyber Resilience
Cyber resilience is the ability to prepare for, respond to and recover from cyber security incidents. It helps organisations protect themselves from cyber risks, defend against and limit the severity of attacks, and ensure that business operations continue to function …
[Continue Reading...]

Maltese bank thwarts huge cyber heist by taking its IT systems offline

Luke Irwin 20th February 2019 Breaches and Hacks, Business Continuity, Financial Services
Sometimes the only thing that can stop an outrageous plan is an even more outrageous one. At least that was the thinking at the Bank of Valletta in Malta, which last week prevented a daring cyber heist by shutting down …
[Continue Reading...]

Unactioned data subject access requests could lead to legal action

Luke Irwin 19th February 2019 EU GDPR
Buckinghamshire-based housing developer Magnacrest has been fined for failing to respond to DSARs (data subject access requests), giving organisations a fresh reminder of the importance of the public’s legal rights to review the information that’s processed about them. The investigation …
[Continue Reading...]

Less than two months to go until DSP Toolkit submission deadline

Georgina Harding 19th February 2019 Data Protection, Healthcare, Toolkits
Less than two months remain for healthcare organisations to demonstrate compliance with NHS Digital’s DSP (Data Security and Protection) Toolkit. To avoid the disruption caused by not meeting this deadline, organisations need to be aware of the changes that the …
[Continue Reading...]

Awareness of cyber resilience is increasing rapidly

Luke Irwin 19th February 2019 Cyber Resilience
We’ve been extolling the virtues of cyber resilience a lot lately – and for good reason. The approach, which describes the ability to prepare for, respond to and recover from security incidents, is quickly becoming accepted by information security experts …
[Continue Reading...]

How to improve your cyber resilience

Luke Irwin 15th February 2019 Cyber Resilience
Cyber resilience isn’t something you can buy. It’s not as simple as finding off-the-shelf tools to plug into your organisation. Rather, you must tailor your approach to your needs, assessing the way any one solution affects the whole. That may …
[Continue Reading...]

Free download: GDPR & ISO 27001 Gap Analysis Tools

Luke Irwin 14th February 2019 EU GDPR, ISO 27001
While Brexit continues to cause widespread uncertainty, you can at least be sure of one thing: deal or no deal, the security risks your organisation faces won’t go away. Data breaches are on the up, and information security and GDPR …
[Continue Reading...]

Weekly podcast: Mumsnet, OkCupid and Apple

Neil Ford 14th February 2019 Cyber Security, Podcast
This week, we discuss a data breach at Mumsnet, no data breach at OkCupid, and a lawsuit against Apple for implementing security measures. Hello, and welcome to the IT Governance podcast for Thursday, 14 February 2019. Here are this week’s …
[Continue Reading...]

Director banned for 4 years after breaching the PECR

Luke Irwin 13th February 2019 Data Protection
Following an investigation by the ICO (Information Commissioner’s Office) and an unpaid fine for breaching the PECR (Privacy and Electronic Communications Regulations), a Manchester-based business has, on the ICO’s petition, been wound up and, following an investigation by the Insolvency Service, …
[Continue Reading...]
  • ← Older posts

    Social Media

    Categories

    • Business Continuity
    • Cyber Resilience
    • Cyber Security
      • Cyber Essentials
      • ISO 27001
      • Risk Management
    • Data Protection
      • EU GDPR
        • #BreachReady
    • Education
    • Financial Services
    • Healthcare
    • IT Best Practice
      • ITIL/ITSM/ISO 20000
      • Project Management
    • IT Governance
      • COBIT
      • Energy Management
      • IG Toolkit
      • ISO 9001
    • NIS Regulations
    • Other Blogs
      • Book Reviews
      • Breaches and Hacks
      • Fighting cyber crime
      • Guest Posts
      • Law Firms
      • Podcast
      • Product Blog
      • Technical Experts
      • Toolkits
    • PCI DSS
    • Penetration Testing
    • Professional Services
    • Retail
    • Scotland
    • Staff Awareness
    • Training
    • Uncategorised
    • Uncategorized
IT Governance Blog Copyright © 2019.