assessment Archives - Cybersecurity Without Insanity

Don’t focus on regulatory compliance

By Sam Glynn|2023-01-31T08:39:32+00:00January 31st, 2023|Categories: cybersecurity|Tags: accountability, analogy, assessment, board of directors, daily, home security, regulatory compliance, risk management, senior executives|

Don’t let your concerns about regulatory compliance distract you from the more urgent risk of a cyber attack

What has ‘Bank of Dave’ got to do with cybersecurity

By Sam Glynn|2023-01-30T11:37:18+00:00January 30th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, home security, regulatory compliance, risk management, whathasthisgottodowithcyber|

While checking your regulatory compliance, make sure someone is also checking the locks on your doors and windows.

Cyber 321: 27th January 2023

By Sam Glynn|2023-01-26T07:54:48+00:00January 27th, 2023|Categories: cybersecurity|Tags: accountability, assessment, board of directors, central bank, cost of attacks, cyber insurance, cyber321, ethics, incident response, Multi-Factor Authentication, passwords, payment fraud, ransomware, regulatory compliance, risk management, senior executives|

Cyber 3-2-1: PayPal and Norton breaches, predictions of imminent cyber catastrophy, and taser-equipped drones. What more could you ask for?

Will this be on the test?

By SG|2023-01-26T10:25:09+00:00January 26th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, dpc, hse, regulation, whathasthisgottodowithcyber|

Just like at school, we focus on what we will be tested on. We should focus ono what the cyber attackers will test us on.

Regulation drives action

By Sam Glynn|2023-01-25T10:52:39+00:00January 25th, 2023|Categories: cybersecurity|Tags: accountability, assessment, daily, dora, gdpr, image, nis2, regulation, regulatory compliance|

CEOs believe regulation drives an improvement in cyber resiliience. So, it’s an opportune time to introduce NIS2 and DORA.

A potential conflict of Interest

By Sam Glynn|2023-01-23T10:51:43+00:00January 23rd, 2023|Categories: cybersecurity|Tags: accountability, assessment, daily, evidence, managed service provider, senior executives|

Why gathering data points about the health of your cybersecurity defences can lead to a conflict of interest, and ways to address this.