Julia Dutton, Author at IT Governance UK Blog

What is an ISMS? 9 reasons why you should implement one

Julia Dutton 4th June 2019 Cyber Resilience, ISO 27001

Whether you like it or not, every business is a target for cyber attackers, and that includes yours. Data breaches are becoming more severe, yet many organisations still assume they will never suffer one. However, if you want to protect …

[Continue Reading...]

7 proven ways to get your ISO 27001 project on track

Julia Dutton 30th May 2019 ISO 27001

Do your research Ditch the jargon and learn how to implement an ISMS (information security management system) in nine steps with our free guide. We’ve also got a handy pocket guide – Nine Steps to Success – An ISO 27001 …

[Continue Reading...]

Ten steps to a GDPR gap analysis

Julia Dutton 8th May 2019 EU GDPR

Most GDPR (General Data Protection Regulation) compliance projects start with a gap analysis. A gap analysis is a popular method of assessing compliance against the requirements of the Regulation. It’ll help you identify and prioritise the areas that you should …

[Continue Reading...]

Do you have a data breach response plan?

Julia Dutton 12th March 2019 Business Continuity, Cyber Resilience, Cyber Security

This blog has been updated to reflect industry updates. Originally published 6 August 2018. Under the EU GDPR (General Data Protection Regulation), organisations must respond to a serious data breach within 72 hours of becoming aware of it. This places …

[Continue Reading...]

What are the best qualifications for a career in cyber security?

Julia Dutton 13th February 2019 Cyber Security, ISO 27001, Training

In common with all IT professionals, information security specialists are very aware of the importance of qualifications in demonstrating competence to current and future employers. Information security is a complex, multidisciplinary field, though, and choosing a learning path that will …

[Continue Reading...]

GDPR: What will happen after a no-deal Brexit?

Julia Dutton 16th January 2019 Data Protection, EU GDPR

Since a no-deal Brexit is starting to look more and more likely, the UK government recently released additional guidance to supplement the ICO’s (Information Commissioner’s Office) previous description of the future data protection regime. The government has stated that it will …

[Continue Reading...]

GDPR compliance: why you should consider BS 10012 certification

Julia Dutton 11th January 2019 Breaches and Hacks, EU GDPR

The EU GDPR (General Data Protection Regulation) hasn’t been around for long but we’re already seeing a huge increase in reported data breaches to the ICO (Information Commissioner’s Office). In the past two years, the number of reported data breaches …

[Continue Reading...]

Digital service providers and the NIS Directive – are you resilient enough?

Julia Dutton 5th July 2018 NIS Regulations

The NIS Regulations 2018 (The Network and Information Systems Regulations) are derived from the NIS Directive (the EU Directive on security of network and information systems), and took effect on 10 May 2018. What is the objective of the NIS …

[Continue Reading...]

UK government cracks down on cyber security

Julia Dutton 4th July 2018 Cyber Essentials, Cyber Security, ISO 27001

To improve cyber risk governance among public-sector departments and their suppliers, the UK government has issued a series of minimum cyber security standards that will be incorporated into the Government Functional Standard for Security. The first standard to be incorporated, …

[Continue Reading...]

The NIS Directive – Free updated compliance guide

Julia Dutton 26th February 2018 Cyber Resilience

The Directive on Security of Network and Information Systems (NIS Directive) ((EU) 2016/1148) aims to achieve a high common level of network and information systems security across the European Union. IT Governance has prepared a free compliance guide based on …

[Continue Reading...]

Julia Dutton Archive