Securing business data

Blog Item

  • 13
    July
    Friday

    SIEM – the real truth

    by Giulia Foss
    When I think about it. Which compliance and operational frameworks actually require me to run a SIEM? When you look at the fine print there is no direct requirement to have a SIEM installed, although the output a SIEM solution does meet a number of the compliance controls.
  • 29
    June
    Friday

    So, who do you trust? Networks...

    by Giulia Foss
    Exactly what is a trusted network? For many it is the supposedly secure haven in which network operations can happen without fear of compromise. Typically, it is segmented and access is limited through devices such as firewalls and role-based access control. In the PCI DSS world, the Cardholder Data Environment (CDE) is the classic example of such a design. The wider internal network is protected by the normal username / password combination that we’re all familiar with. As a concept, it has worked well and provided a reasonable level of protection for corporate environments. At its heart is the view that all devices connected to the network ensure some form of trust.
  • 18
    June
    Monday

    Router and DNS Hijacking Malware- What you need to know..

    by Giulia Foss
    After a number of emergency responses in the last couple of months coupled with the recent news of variants of malware targeting DNS settings within home/business routers, it is perhaps a good time to reflect on the impacts of such attacks and explain briefly how they are working.
  • 18
    April
    Wednesday

    It's about time!

    by Giulia Foss
    I have the privilege of meeting and discussing cyber security to a large number of people across a plethora of industries and markets. They all take Cyber security very seriously, all have representation at different degrees at board level, all use a blend of technical and operational controls to protect themselves, all are at varying levels of cyber maturity and all have challenges around, resources, education and budget when dealing with a very dynamic cyber security landscape.
  • 04
    April
    Wednesday

    Assurance vs Accreditation

    by Giulia Foss
    We’re living in a very fast moving and ever-changing world. A world where cyber security (or the lack of it) is main stream, daily news. Market and technology developments have opened growing opportunities for criminal activity.
  • 26
    March
    Monday

    Office 365 – The Common Target

    by Giulia Foss
    Over the past month alone the CNS emergency response team have attended a number of incidents that have followed very similar and well known patterns; the culprit being an active and prolonged attack against office 365 based resources, now, this is nothing new and has been a well known avenue of attack for some time.
  • 20
    March
    Tuesday

    Staying safe online - What to do in light of the Facebook scandal...

    by Giulia Foss
    The news is now widespread, more than 50 million Facebook user’s data has been accessed and allegedly misused by Cambridge Analytica.
  • 14
    March
    Wednesday

    Pen Testing Everyday Will Keep The Hackers At Bay…

    by Giulia Foss
    It will come as no surprise that in the current climate, organisations across the board are facing on-going and persistent threats to their IT systems. The news over the past year has been awash with stories of some of our largest companies and institutions being attacked and the statistics gathered on cyber-crime are concerning to say the least.
  • 22
    January
    Monday

    The journey to compliance: What does GDPR mean if you operate within the travel sector?

    by Giulia Foss
    The European Union’s General Data Protection Regulation (GDPR) will come into effect and be enforceable from 25th May 2018, and the enhanced data protection regulation contained within it could have far reaching implications for UK businesses, particularly those in the travel sector.
  • 04
    January
    Thursday

    Remote & Mobile Working: Security Procedures for Out of Office

    by Giulia Foss
    All large professional services organisations have considered remote working for their teams. You might be a large law firm offering one day a week working from home, or a finance house with a client-facing team that’s on the move. Maybe you’re an HR Director who’s noticed how few people are in the office at any one time.
call us

Get in touch

Talk to our experts today +44 (0) 20 7592 8800

Send us a message

We'll get back to you Send us a message

Connect with us

See what we're saying elsewhere