Information security is a Board issue. Not everyone seems to appreciate this, and one of the more disheartening aspects of my day job is how hard it is to get senior execs to take the time to have security awareness training and engage with security policy. Why is it a Board issue? Firstly because directors … Continue reading The importance of governance – a dozen good questions you should ask your Board
Bear with me, this one’s a digression. A consequence of the digital revolution has been the opportunity for everyone to turn their hand to anything. In general, we think this is a good thing – who knows what talents went undiscovered in the past? But there are always unintended, and undesirable, consequences to change. I’m … Continue reading Well-meaning amateurs
If you’re not in the public eye, you’re not likely to get hacked for fun. Anonymous et al are in it for the oxygen of publicity. Most hackers are in it for the money. So to understand your risk, you need to follow the money. How can hackers monetise you? Firstly, by using you as … Continue reading How does this hacking thing work, then?