IT Security Archives - Alan Calder on IT Governance, Cyber Resilience, ISO 27001 and Brexit

ISO/IEC 27001:2022 – how different is the new standard?

Alan Calder July 27, 2022 IT Security

ISO/IEC 27001:2022 is currently due for publication in early October. How different will it be to the current version of the Standard, which has been in use since 2013? Should an organisation delay kicking off an ISO 27001 implementation and …

[Continue Reading...]

The post-pandemic recovery will lead to an increasingly cyber-compromised 2023

Alan Calder November 22, 2021 IT Security

A slew of reports and surveys released over the weekend reveal the size of the cyber crime challenge faced by today’s organisations. Digital transformation, driven by the pandemic, and the shift to hybrid working, driven by the post-pandemic recovery, both …

[Continue Reading...]

The GDPR requirements following Brexit

Alan Calder January 29, 2021 EU GDPR, IT Security

Friday 29 January Many organisations are slightly confused about the immediate GDPR requirements in the UK and the EU following the UK’s exit from the EU. This is the situation: the so-called Free Trade Agreement makes provision for the EU …

[Continue Reading...]

Dealing with coronavirus – a perspective

Alan Calder April 29, 2020 IT Security

According to the World Health Organization, the total number of coronavirus deaths, worldwide, as at 0100 on 28 April 2020, is 202,733. At this point, Covid-19 is the 23rd highest cause of death worldwide.

[Continue Reading...]

In troubled times

Alan Calder July 24, 2019 IT Security

In troubled times – when faced with socio-economic uncertainty or political instability – organisations tend to pull in their horns, cut expenditure and save for the whatever the future holds. Cyber criminals love troubled times, because they know that organisations …

[Continue Reading...]

Key lessons from the record BA and Marriott GDPR fines

Alan Calder July 11, 2019 IT Security

After a year of apparent inaction, the ICO (Information Commissioner’s Office) has struck twice in two days with the two largest privacy-related fines in the EU. I think organisations can draw two key lessons from these actions: 1. You can’t …

[Continue Reading...]

British Airways: ICO takes GDPR regulatory action

Alan Calder July 8, 2019 IT Security

The ICO (Information Commissioner’s Office) announced today that it will be fining British Airways £183m for the website date breach it suffered last year. I said at the time that a data breach on this scale and which lasted as …

[Continue Reading...]

City of Florida proves the ransomware business case

Alan Calder June 21, 2019 IT Security

The City of Florida, after agreeing to spend $1 million (about £790,000) on new IT infrastructure after hackers captured their systems three weeks ago, has now agreed to pay $600k to get access to their systems. The ransomware was apparently …

[Continue Reading...]

Cyber security: time to get serious?

Alan Calder March 13, 2019 IT Security

Last week in the US, a Georgia county paid a ransomware criminal $400,000 (about £302,000) to release its IT systems. The malware resulted in almost the entire local government system taken offline and processes revert to paper; officials decided that …

[Continue Reading...]

93% of organisations plan to increase spend on cyber defences – they need to!

Alan Calder February 14, 2019 IT Security

According to research carried out for Carbon Black, an endpoint security company, 88% of UK organisations reported they suffered a cyber breach in the past 12 months, with the average breaches per organisation running at 3.67! Attacks have become more …

[Continue Reading...]