IT Governance

JULY 29, 2019

Protecting your organisation against cyber crime can sometimes feel like a never ending game of security whack-a-mole. Just as soon as you’ve secured one weakness, it seems as though another vulnerability rears its head. In this post, we outline five essential ways of keeping your organisation secure.

Information Security 74

Information Security Security Risk Phishing 74

IT Governance

MARCH 19, 2018

Organisations are always looking for ways to improve their security posture, but the process is often frustrating. As soon as they secure one weakness, cyber criminals find another one. Here are five essential ways you can keep your organisation secure. Leaders should support cyber security staff.

Information Security 70

Information Security Security Risk Phishing 70

Thales Cloud Protection & Licensing

DECEMBER 18, 2018

Many years ago, a board member said to me, “We’ve employed you to do information security, so why do we have to do anything?” Instead we will see organisations start proactively approaching information security experts for actionable advice and guidance. This was fairly typical.

Information Security 76

Information Security Security Risk GDPR 76

IT Governance

JANUARY 16, 2023

Physical security in the workplace is a dying artform. With our growing reliance on technology and the rise in remote working, we are leaning more on cyber security and neglecting the protection of tangible assets. These all present their own information security risks, but the physical threats haven’t disappeared either.

Security 111

Security Data breaches Risk Information Security 111

IT Governance

OCTOBER 26, 2022

Implementing an ISO 27001-compliant ISMS (information security management system) can seem complex, and it’s often difficult to know how the Standard’s specifications should be applied to your organisation. Our ISO 27001 Roles Learning Path provides a unique guide to help you decide which training courses and?qualifications

Compliance 98

Compliance Risk Education Information Security 98

IT Governance

MAY 14, 2019

Staff can jeopardise a firm’s security with a single moment of carelessness. 2018 saw a significant rise in the number of law firms reporting security incidents concerning their own staff, up from 33% in 2017 to 46% in 2018 according to research by PwC. Look closer to home – insider threats.

Security 86

Security Education Phishing GDPR 86

IT Governance

MAY 27, 2021

For all the talk of criminal hacking, ransomware infections and the technologies to prevent them, the key to protecting your organisation is cyber security awareness training. The importance of cyber security staff awareness. Cyber security awareness best practices. Consider how your employees work.

Security awareness 119

Security awareness IT Security GDPR 119

IT Governance

SEPTEMBER 15, 2021

A UK government report published last year found that 48% of organisations lacked the expertise to complete routine cyber security practices. The report also found that 30% of organisations had skills gaps in more advanced areas, such as penetration testing, forensic analysis and security architecture.

Security 122

Security Insurance Education Government 122

eSecurity Planet

APRIL 9, 2024

SaaS security checklists are frameworks for protecting data and applications in cloud-based environments. They serve as benchmarks for upholding strong security requirements, evaluating existing tools, and assessing potential solutions. We’ve designed a customizable template to help you develop your own SaaS security checklist.

Security 105

Security Compliance Cybersecurity Communications 105

IT Governance

FEBRUARY 22, 2018

The Information Commissioner’s Office’s (ICO) latest statistics on data security incidents have revealed a 19% increase from Q2 to Q3 2017, with 815 incidents reported between October and December 2017. In the education sector, there was a 68% increase, from 57 reported incidents in Q2 to 96 in Q3.

Security 75

Security Information Security Data breaches GDPR 75

IT Governance

JULY 6, 2022

Research presented at the USENIX SOUPS security conference in 2020 supports the theory, although it was slightly more optimistic. It found that employees will recall cyber security staff awareness guidance for four months before their knowledge begins to fade. Take information security staff awareness for instance.

Information Security 105

Information Security Data breaches Education Phishing 105

IT Governance

MARCH 15, 2019

Earlier this month we caught up with Geraint Williams, CISO for GRC International Group plc, to find out more about information security and how he raises awareness within the workplace. Interactive e-learning courses are a time- and cost-effective way to educate staff on key organisational issues in a structured manner.

Education 74

Education Security awareness Information Security Risk 74

Security Affairs

SEPTEMBER 24, 2023

educational nonprofit organization National Student Clearinghouse disclosed a data breach that impacted approximately 900 US schools. The security breach resulted from a cyber attack exploiting a vulnerability in the MOVEit managed file transfer (MFT).-

Data breaches 104

Data breaches Education Ransomware Cybersecurity 104

eSecurity Planet

JUNE 21, 2022

An IT security certification can provide a key boost for your career, but with so many different certifications available (and so many organizations more than happy to take your money for training and testing), it’s important to make sure that the time and investment are well spent. How to Choose a Security Certification.

Cybersecurity 117

Cybersecurity Systems administration Information Security Compliance 117

IT Governance

MARCH 22, 2018

Four out of five organisations can’t find qualified staff to fill cyber security positions, according to CyberEdge’s 2018 Cyberthreat Defense Report. The education sector (87.1%) is the most affected, followed by telecommunications and technology (85.1%), manufacturing (81.5%) and finance (81.4%). Application security tester (22.1%).

Security 67

Security Education Manufacturing Information Security 67

IT Governance

MAY 7, 2019

Why your employee’s social media use is an information security risk. Employees may think nothing of revealing they are on-site with a client, but the client may not appreciate this information being made public. Staff should be educated about the possible consequences of sharing their activities or location. Oversharing.

Education 103

Education Risk Information Security Data breaches 103

IT Governance

APRIL 13, 2018

Bill Evans , senior director at One Identity, said that “[e]nd user education may have limited some of the risk. Bill Evans , senior director at One Identity, said that “[e]nd user education may have limited some of the risk. Educating end users as part of a wider cyber security strategy will help mitigate the risk of future attacks.

Passwords 72

Passwords Education Information Security Risk 72

IT Governance

JUNE 21, 2018

Far too often, information security teams have only the broadest overview of the wider workings of their organisations. Other staff, meanwhile, tend to have little knowledge of or interest in information security practices, which they often believe have been designed to hinder their day-to-day work.

Security 58

Security Security awareness Information Security Phishing 58

IT Governance

DECEMBER 11, 2019

Some are quick fixes that you can sort out before you go away for the holidays, whereas other require a refined, systematic approach to information security. A simpler and more secure technique is to create a mnemonic or cipher, such as taking the first character from each word of a sentence. Weak passwords.

Access 96

Access Passwords Education Information Security 96

IT Governance

APRIL 5, 2019

More than 50 universities in the UK have had their lack of cyber defences exposed, with security testers breaching their systems in under two hours. John Chapman, the head of Jisc’s security operations centre, warned that the vulnerabilities could be a sign of an impending “disastrous data breach or network outage”.

Security 83

Security Data breaches Phishing Education 83

Security Affairs

MARCH 22, 2021

The Defence Academy of the United Kingdom provides higher education for personnel in the British Armed Forces, Civil Service, other government departments and service personnel from other nations. The majority of training is postgraduate with many courses being accredited for the award of civilian qualifications. Teaching continues.”.

Education 121

Education Military Government IT 121

Security Affairs

APRIL 10, 2023

The UK and Ireland branch disclosed a security breach and began notifying its customers. “Our security team has discovered malicious activities in our hosted data centre last night. The company employs more than 7,000 HR professionals and serves over 5.2 million employees every month.

Data breaches 78

Data breaches Education Access Privacy 78

IT Governance

SEPTEMBER 4, 2019

Don’t overburden your security team. You can’t expect security personnel to stay on top of where everyone is going for their holidays and to double-check every time they log in – particularly when there’s a good chance they’ll be short-staffed themselves. Plus, like any application, a VPN can have security flaws that can be exploited.

Risk 72

Risk Security Education Access 72

IT Governance

NOVEMBER 24, 2022

Organisations that suffer security incidents are sometimes said to be victims of “cyber extortion”, but it’s often unclear what exactly that phrase means. The term is probably preferred by victims because of the connotations associated with malware infection, which implies (correctly or not) that the victim had weak security protocols.

IT 130

IT Ransomware Encryption Phishing 130

IT Governance

MAY 22, 2018

The Information Commissioner’s Office’s (ICO) latest statistics on data security incidents have revealed a 17% increase in the number of reported data security incidents in Q4 2017-18. Source: ICO Data Security Trends Q4 2017-18. Source: ICO Data Security Trends Q4 2017-18. Better protect your information assets.

GDPR 60

GDPR Information Security Data breaches Education 60

Security Affairs

APRIL 30, 2020

Security researchers from Check Point Research Team discovered critical vulnerabilities in three popular e-learning plugins for WordPress sites. Security researchers at Check Point Research Team are warning of recently discovered vulnerabilities in some popular online learning management system ( LMS ) WordPress plugins. million times.

Education 104

Education Cybersecurity Security IT 104

IT Governance

DECEMBER 17, 2018

One of IT Governance’s governance and risk management consultants, Andrew Pattison, was interviewed by GBC News last week about the most common types of cyber threats after delivering IT Governance’s three-day training course on “Effective Protection against Cyber crime”. The course was held in Gibraltar and hosted by Rock Learning. .

Government 63

Government IT Risk Education 63

AIIM

FEBRUARY 27, 2020

In several recent posts, I’ve talked about professional development options for information management professionals and provided guidance on how to determine whether a particular course or certification is a good fit. First, we wanted these blog posts to be informative and insightful, rather than be perceived as self-aggrandizement.

ECM 116

ECM Records Management Metadata Information governance 116

IT Governance

MAY 11, 2021

Our Q1 2021 review of data breaches found that almost one in three publicly disclosed security incidents was a ransomware attack, and in April alone, we discovered 53 cases. He is an acknowledged international cyber security guru and a leading?author author on information security and IT governance issues. Find out more.

Ransomware 105

Ransomware Data breaches Phishing Government 105

IT Governance

JUNE 26, 2019

If you’re interested in gaining a high-ranking position in the information security industry, you’ll probably need the CISSP® exam (Certified Information Systems Security Professional) qualification. In this blog, we explain everything you need to know before enrolling on a CISSP training course. Security engineer.

Information Security 64

Information Security Education Government Security 64

The Last Watchdog

MARCH 21, 2022

It’s time to rethink your security stack and priorities. Security and privacy are more than just adding on to what you have historically done: It’s a constant re-evaluation of your approach, where nothing is sacred except for the data you are entrusted to protect. Of course, data protection requires effective cybersecurity solutions.

Encryption 214

Encryption Cloud Privacy GDPR 214

IT Governance

OCTOBER 30, 2018

For all the attention that organisations pay to information security, the biggest threat continues to come from employees. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR 77

GDPR Government Data breaches Information Security 77

IT Governance

OCTOBER 30, 2018

For all the attention that organisations pay to information security, the biggest threat continues to come from employees. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR 77

GDPR Government Data breaches Information Security 77

IT Governance

APRIL 11, 2018

The cyber security skills gap has been growing for years, and the problem is particularly bad in the UK. All of this means that organisations are unprepared for major security incidents, which could cause substantial damage and affect business operations. However, some cyber security experts believe the skills shortage is a “myth”.

Security 56

Security Risk Education Information Security 56

IT Governance

FEBRUARY 14, 2024

In more recent months, we launched the channel partner programme in Europe and America, with training and security testing proving especially popular. We are the market leader in data privacy and cyber security risk management solutions, so it makes sense to partner with us. What is it that makes IT Governance special?

Government 59

Government IT Sales Data Privacy 59

IT Governance

JUNE 21, 2018

Educating your staff can be complex to arrange, time consuming and costly. However, an effective training programme will help to ensure that your staff understand the importance of being alert and vigilant, avoid falling victim to cyber attacks and understand security procedures. E-learning courses are environmentally friendly.

Retail 65

Retail Education Compliance GDPR 65

IT Governance

APRIL 9, 2018

Commenting on the report, Robert Holmes, vice president of email security products at Proofpoint, said: Email fraud is highly pervasive and deceptively simple; hackers don’t need to include attachments or URLs, emails are distributed in fewer volumes, and typically impersonate people in authority for maximum impact. Phishing is a top concern.

Phishing 78

Phishing Security awareness Education Risk 78