A lot has changed at IT Governance Ltd in the 14 months since last I posted on this blog. Our monthly revenues have increased by around 50% – and the number of people in the company has also gone up by about the same. We’ve added more training courses, grown our range of ITGP books and toolkits, expanded our consultancy services, done some really challenging penetration testing contracts, become a PCI QSA, added ISO9001 certification to our ISO27001-certified ISMS, launched a range of e-Learning staff awareness courses, and our Vigilant Software subsidiary launched a new version of vsRisk.
In that same time period, ‘cyber security’ has become an issue of serious national concern, in public, private and third sectors,and the number of companies worldwide achieving ISO27001 certification has substantially increased. We’ve seen a growing interest in IT Service Management certification to ISO20000 and, of course, the British business continuity standard has now been internationalised as ISO22301. COBIT has gained an actual board-level governance module and COBIT 5 now looks as though it could be genuinely useful as an IT Governance framework, rather than just as an IT control framework.
‘Cyber resilience’ is emerging now as a concept which recognises that security breaches will happen and that the resilience of the organisation in identifying and responding to them will become a critical survival trait.
The year ahead looks as though it will be as active as the year that has passed. I seem to have a growing number of speaking engagements and the range of challenging questions from our growing number of UK and international clients continues to drive us to find pragmatic, cost-effective solutions for them.
I’m even aiming to blog a whole lot more regularly in this next year of my life than I did last year!