service provider Archives - Code in Motion

The risk if your IT service provider is also your CISO.

The conflict of interest when your security expert works for your IT service provider.

By Sam Glynn|2023-11-22T09:45:23+00:00November 22nd, 2023|Categories: cybersecurity|Tags: assessment, daily, service provider, third party risk management|

Get your head out of the clouds

If you think using the cloud means someone else is managing your cyber security, you need to get your head out of the clouds.

By Sam Glynn|2023-10-26T10:33:58+01:00November 6th, 2023|Categories: cybersecurity|Tags: accountability, cloud, daily, Google Workspace, microsoft 365, mindset, risk management, saas, service provider, supply chain risk, third party risk management|

Cyber 3-2-1: A supply chain attack, a Facebook malvertising campaign, and an existential crisis.

Cyber 3-2-1: What do a supply chain attack, a malvertising campaign, and an existential crisis look like?

By Sam Glynn|2023-11-03T08:06:17+00:00November 3rd, 2023|Categories: cybersecurity|Tags: backups, business continuity, cyber321, Multi-Factor Authentication, phishing, ransomware, regulators, risk management, service provider, staff awareness, supply chain risk, third party risk management|

Cyber 3-2-1: If cybersecurity was the music industry

Cyber 3-2-1: How attackers make a hit; IT service providers and consultants are top of the wrong charts, and the latest hit from CISA’s.

By Sam Glynn|2023-10-27T06:51:26+01:00October 27th, 2023|Categories: cybersecurity|Tags: cisa, cyber321, Microsoft, ransomware, risk management, service provider, supply chain risk, third party risk management|

The Gardai need to cop on

The difference between being legally right and morally right.

By Sam Glynn|2023-10-25T09:55:17+01:00October 25th, 2023|Categories: cybersecurity|Tags: accountability, assessment, board of directors, daily, data protection, dpc, gdpr, regulators, regulatory compliance, senior executives, service provider, supply chain risk|

Cyber 3-2-1: Why do you rob banks? Because that’s where the money is!

Cyber 3-2-1: Why do you rob IT providers / SaaS services / legal firms? Because that’s where the data / money / reputations are.

By Sam Glynn|2023-10-20T08:27:47+01:00October 20th, 2023|Categories: cybersecurity|Tags: assessment, cyber321, Google Workspace, legal, microsoft 365, phishing, ransomware, risk management, saas, service provider|

What has homework got to do with cyber security?

When it matters, you would never ask a student to correct their own homework. Same story for cyber security.

By Sam Glynn|2023-10-18T08:17:17+01:00October 18th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, service provider, whathasthisgottodowithcyber|

We don’t have any IT risk

Just because you outsource IT does not mean you don’t have IT risk.

By Sam Glynn|2023-10-16T10:13:13+01:00October 16th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, risk management, service provider, supply chain risk, third party risk management|

Do as I say, not as I do.

Is the person with the keys to your Microsoft 365 kingdom actually using the locks?

By Sam Glynn|2023-10-11T10:06:21+01:00October 11th, 2023|Categories: cybersecurity|Tags: assessment, daily, microsoft 365, Multi-Factor Authentication, phishing, service provider, staff awareness, supply chain risk, third party risk management|

One email could secure your Microsoft 365 environment.

One email could be the best thing that ever happened to the security of your Microsoft 365 environment.

By Sam Glynn|2023-10-11T07:10:31+01:00October 2nd, 2023|Categories: cybersecurity|Tags: assessment, daily, microsoft 365, service provider|