Budgets – Security’s friend or foe
Budgets are integral to every business. The start up’s business plan has to include budgets and the multinational will have... Continue reading →
Employee Security – High risk terminations
Employee security really does matter. Your employees are the lifeblood of every organisation. You put a lot of effort into... Continue reading →
Physical security is important for data protection
Physical security has always been a cornerstone of any Information Security program. As a topic, it is covered by every... Continue reading →
Suspicious mail advice – Advice from NaCTSO
This communication regarding suspicious mail has been issued by the National Counter Terrorism Security Office (NaCTSO) and the Centre for... Continue reading →
NHS Trust fined £200,000 following data disposal errors
Although it has a well structured, well run and reasonably well resourced security management service, the NHS still seems to... Continue reading →
Governance failure costs £45,000
A breakdown of internal governance processes has led to the Information Commissioner’s Office (ICO) issuing a civil monetary penalty (fine)... Continue reading →
Passwords are not bad, just dont trust vendors
Passwords are in the news again, with yet another headline crying out for the death of the password and claiming... Continue reading →
Do you value your security?
We are in a new year now, the end of the world never materialised and everyone will be back at... Continue reading →
Bad Security – Taking Risks and Not Realising It
Another fine has been issued by the Information Commissioner’s Office (ICO) and, again, it is the result of something that... Continue reading →
Security is the cheaper option – stop avoiding it.
Another Data Protection Act fine (civil monetary penalty) was announced yesterday (25 Oct 12), and again it is largely the... Continue reading →
ICO claims private sector leads the way on Data Protection Act compliance
Interestingly, a report from the ICO published yesterday has stated that the private sector appears to be more compliant with... Continue reading →
What price security?
One of the most challenging tasks facing any security professional is communicating the value of security to others within the... Continue reading →
Security is not a tool and your tools are not security
Quite rightly, information security is a hot topic for most businesses. This is driven by a combination of regulatory and... Continue reading →
LinkedIn to face £3m lawsuit over password breach
Following up on the news last week that LinkedIn had suffered a major security breach in which huge numbers of... Continue reading →
Risk Management – Not Risk Avoidance
There is a commonly held misconception about risk management and, where this relates to security risk management, it is even... Continue reading →