DORA + SEAR + IAF = IRS

DORA; SEAR; IAF. Lots of acronyms. But the only one that matters is IRS.

By Sam Glynn|2023-11-27T10:05:19+00:00November 27th, 2023|Categories: cybersecurity|Tags: accountability, assessment, board of directors, central bank, daily, dora, iaf, regulators, regulatory compliance, sear, senior executives, whathasthisgottodowithcyber|

Read More

The risk if your IT service provider is also your CISO.

The conflict of interest when your security expert works for your IT service provider.

By Sam Glynn|2023-11-22T09:45:23+00:00November 22nd, 2023|Categories: cybersecurity|Tags: assessment, daily, service provider, third party risk management|

Read More

Why your execs are special.

When it comes to executive security behaviours, it’s a case of “Do as I say, not as I do”

By Sam Glynn|2023-11-13T09:08:38+00:00November 13th, 2023|Categories: cybersecurity|Tags: assessment, board of directors, daily, risk management, senior executives, staff awareness, survey|

Read More

Thinking vs Doing

You aren't rewarded for reading about cyber security.

By Sam Glynn|2023-10-26T09:59:52+01:00October 30th, 2023|Categories: cybersecurity|Tags: assessment, daily, mindset|

Read More

The Gardai need to cop on

The difference between being legally right and morally right.

By Sam Glynn|2023-10-25T09:55:17+01:00October 25th, 2023|Categories: cybersecurity|Tags: accountability, assessment, board of directors, daily, data protection, dpc, gdpr, regulators, regulatory compliance, senior executives, service provider, supply chain risk|

Read More

Cyber 3-2-1: Why do you rob banks? Because that’s where the money is!

Cyber 3-2-1: Why do you rob IT providers / SaaS services / legal firms? Because that’s where the data / money / reputations are.

By Sam Glynn|2023-10-20T08:27:47+01:00October 20th, 2023|Categories: cybersecurity|Tags: assessment, cyber321, Google Workspace, legal, microsoft 365, phishing, ransomware, risk management, saas, service provider|

Read More

What has homework got to do with cyber security?

When it matters, you would never ask a student to correct their own homework. Same story for cyber security.

By Sam Glynn|2023-10-18T08:17:17+01:00October 18th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, service provider, whathasthisgottodowithcyber|

Read More

We don’t have any IT risk

Just because you outsource IT does not mean you don’t have IT risk.

By Sam Glynn|2023-10-16T10:13:13+01:00October 16th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, risk management, service provider, supply chain risk, third party risk management|

Read More

Do as I say, not as I do.

Is the person with the keys to your Microsoft 365 kingdom actually using the locks?

By Sam Glynn|2023-10-11T10:06:21+01:00October 11th, 2023|Categories: cybersecurity|Tags: assessment, daily, microsoft 365, Multi-Factor Authentication, phishing, service provider, staff awareness, supply chain risk, third party risk management|

Read More

What did the Romans ever do for us?

Microsoft 365 is more than just email. It’s your Roman Empire.

By Sam Glynn|2023-10-11T07:10:00+01:00October 4th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, microsoft 365|

Read More