Anyone looking for guidance on the basic steps they should take to keep their organisation secure should follow Cyber Essentials. This UK government scheme sets out five controls that can protect organisations from the most common types of cyber attack. …
Last month, Life at Parliament View was fined £80,000 by the ICO (Information Commissioner’s Office) after security errors exposed 18,610 customers’ personal data for almost two years. The incident occurred when the London-based estate agency transferred personal data from its …
The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Some mistakenly thought that it would only affect large organisations, others doubted that the much-discussed …
As we approach 31 October and the revised Brexit deadline day, you’ll see more and more stories pop up about previously under-reported ways that the UK’s departure from the EU will affect organisations. The latest concerns are about how UK …
Anti-malware technology is one of the most basic cyber security mechanisms that organisations should have in place, but according to IT Governance’s 2019 Cyber Resilience Report, 27% of respondents haven’t implemented such measures. This finding is even more surprising given …
The past three years of Brexit negotiations have largely proved William Goldman’s adage that “nobody knows anything”. No one can tell you what Brexit will entail and very little has been finalised. Sure, there has been a flurry of recent …
IT Governance, part of GRC International Group, is looking to recruit recent graduates with degrees or non-graduates with demonstrable skills and knowledge in either Networking, Digital Forensics, Ethical Hacking or Computer Science with strong technical knowledge of networking to become …
The EU GDPR (General Data Protection Regulation) grants data subjects the right to access their personal data. This is known as a DSAR (data subject access request). Subject access requests are not new, but the GDPR introduced several changes that make …
A security researcher has identified major flaws in many organisations’ DSAR (data subject access request) procedures. James Pavur contacted dozens of UK and US-based companies to request personal information about his fiancée in order to see how they would respond. …
The first 72 hours after you discover a data breach are critical. Why? The EU GDPR requires all organisations to report certain types of personal data breach to the relevant supervisory authority. More specifically, Article 33 dictates that, in the event …
