On 29 January, MPs will vote on Theresa May’s revised Brexit deal, in what may well be the final attempt to prevent the UK leaving the EU without a formal agreement. As it stands, the prospect of a deal doesn’t look good. May’s ‘Plan B’ has been called a facsimile of the emphatically rejected Plan A, and although amendments continue to be tabled, most …
On 16 January, the PCI SSC (Payment Card Industry Security Standards Council) published the PCI Secure Software Standard and the PCI Secure Software Lifecycle (Secure SLC) as part of a new PCI Software Security Framework designed to ensure secure design, …
An ISMS (information security management system) is a centrally managed framework for keeping an organisation’s information secure. It contains a set of policies, procedures and controls for protecting the confidentiality, integrity and availability of information. Confidentiality refers to the ability …
Google has been fined €50 million (about £44 million) by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). It’s by far the biggest fine related to the GDPR, which took effect in …
Committing to cyber resilience is a lot like mountaineering. When you’re getting started, the concept seems exhausting and nigh on impossible. You’re scrambling around trying your best to get staff to move away from simple passwords like ‘123456’, yet you’re …
This week, we discuss how the US government shutdown is affecting federal websites’ security, the sentencing of a man who knocked Liberia’s Internet offline with a botnet, and what a no-deal Brexit means for data protection Hello and welcome to …
Earlier this week, Theresa May’s EU Withdrawal Bill was defeated in parliament by a record 230 votes, sparking speculation and fear for the future of the UK’s relationship with the EU. But no matter what the outcome is, businesses can’t …
Since a no-deal Brexit is starting to look more and more likely, the UK government recently released additional guidance to supplement the ICO’s (Information Commissioner’s Office) previous description of the future data protection regime. The government has stated that it will …
Information security policies are essential for tackling organisations’ biggest weakness: their employees. Everything an organisation does to stay secure, from implementing state-of-the-art technological defences to sophisticated physical barriers, relies on people using them properly. It only takes one employee opening …
For many, 2018 will go down as the year of the GDPR (General Data Protection Regulation). The Regulation overturned organisational procedures, infiltrated our email inboxes with dozens of last-minute policy updates and, for those in the industry, became dinnertime conversation …
