Category: Cyber & Information Security

The effectiveness of security awareness training is something that is the subject of some debate among professionals. What is not open for debate is that keeping employees educated and up-to-date about cybersecurity is vital, given the sophistication and volatility of today’s threat landscape.…Read more

How can organisation can leverage cyber security to generate business value? It’s now the case that being seen to take systems security seriously can, in fact, help the business to prosper in a competitive environment. In a world of increasingly interlinked systems, this is important. If you are going to…Read more

A cyber security framework is a way to improve an organisation’s existing security defences by making use of the experience and wisdom of other professionals and organisations.  With an increased focus on how to prevent and deal with cyber-attacks, there are several frameworks…Read more

Why Are UK Mid-market businesses susceptible to cyber attacks? For a moment let’s consider a notional Mid-market company that designs and manufactures a key component that goes into a globally popular piece of consumer electronics. The company is a successful and growing business with plans for …Read more

So, what can a SME do to protect themselves and ensure they have the right security in place that they don’t get caught out? The first step is to understand what information they hold and why, where and how they do so. This means conducting an…Read more

Securing IT systems is often seen as a necessary evil and a cost on the business. But can cyber security contribute to business growth? We are all aware of the need to protect sensitive information and drivers such as ‘Supply Chain Security’, and new data privacy legislation such as GDPR makes that more of an imperative.  The key point here is…Read more

Extrapolating current trends, hiring and training additional cyber-security personnel will never keep up with the growing volume of threats. The only alternative is to hire better trained and better-equipped professionals.  A sea-change could come from the evolution of new strategies based upon machine learning and AI in security…Read more

As the name implies, Fileless infections don’t entail files being written or downloaded and executed in the affected machine’s local disks. Instead, they are executed in the system’s memory, or reside in the system’s registry for persistence. In a typical fileless infection, payloads can be injected into the memory of an existing application/software, or by…Read more

It is very clear that there is still a great deal of work to do when it comes to combating the cyber risks introduced using smart devices, and this applies to both businesses and consumer households. Recent experiences with IoT have been a retrograde step within IoT risk management but we can…Read more

The cyber threat landscape is never static, as we’ve seen, there have already been shifts in the nature and focus of recent attacks. Predicting how it will change in future is difficult as there are likely to be developing threats that we are not currently aware of. That said, there are some areas of the threat landscape that…Read more

No two organisations will have the same security portfolio size, content or associated spend. Budget and product selection depend entirely upon your business assets, your services and their associated revenues. The business impact can be catastrophic if your service is not available or is compromised; we have all seen…Read more

Ensuring the reliable and safe performance of systems means carrying out assurance testing. This is about more than simply verifying that the software works. It’s also about implementing an organised process to understand what happens both when things go right and when there’s an error. It’s also about…Read more