IT Security – Alan Calder on IT Governance, Cyber Resilience, ISO 27001 and Brexit

Cyber security: time to get serious?

Alan Calder March 13, 2019 IT Security

Last week in the US, a Georgia county paid a ransomware criminal $400,000 (about £302,000) to release its IT systems. The malware resulted in almost the entire local government system taken offline and processes revert to paper; officials decided that …

[Continue Reading...]

93% of organisations plan to increase spend on cyber defences – they need to!

Alan Calder February 14, 2019 IT Security

According to research carried out for Carbon Black, an endpoint security company, 88% of UK organisations reported they suffered a cyber breach in the past 12 months, with the average breaches per organisation running at 3.67! Attacks have become more …

[Continue Reading...]

Timetable to first UK GDPR fines

Alan Calder January 29, 2019 IT Security

Anyone who does even a limited amount of analysis of the ICO’s (Information Commissioner’s Office) website can see that, on average in the UK, the time elapsed between the committing of an offence under data protection legislation and the consequent …

[Continue Reading...]

First GDPR fines focus on legal compliance

Alan Calder January 24, 2019 IT Security

Historically, data protection fines tended to be triggered by either cyber breaches or some process or system failure that led to personal data being exposed. Two of the first fines imposed under the GDPR (General Data Protection Regulation) point to …

[Continue Reading...]

4 bad things happening every minute on the Internet

Alan Calder August 29, 2018 IT Security

Risk IQ’s Evil Internet Minute infographic tells you the bad things happening every minute on the Internet: 5 successful ransomware attacks 9 phishing attacks 1,274 new malware variants 5,518 records compromised Any data you look at shows that the scale …

[Continue Reading...]

Referendum was advisory

Alan Calder November 3, 2016 IT Security

I’m delighted to see that the High Court has found, this morning, that Mrs May’s government cannot trigger Article 50 on its own. As far as I can see, referendums in the UK are only advisory, not binding – which …

[Continue Reading...]

Management disconnect

Alan Calder November 3, 2016 Business and the Economy, Business Continuity, Compliance, Cyber Security, Data Protection, EU GDPR, IT Governance, IT Security

I’ve talked, for some years, about the disconnect between managements stating that cyber security is on their agenda, or under control, and the rapidly rising number of data breaches, as reported in multiple surveys and reports, as well as increasingly …

[Continue Reading...]

Your role in the UK cyber security strategy

Alan Calder November 1, 2016 IT Security

The Chancellor of the Exchequer today says Britain will strike back at foreign cyber threats and that cyber criminals can strike everyone, from the bedroom to the board room. He’s right. Everyone – and businesses most of all – has …

[Continue Reading...]

When the World gives you lemons, make Limoncello

Alan Calder October 12, 2016 IT Security

Most businesses will make the best of Brexit. From a broader perspective, however, vandals are using the Brexit vote to destroy Britain. The referendum was in law directional only; neither the government nor the Brexiteers had or have a coherent …

[Continue Reading...]

Brexit impact on GDPR compliance

Alan Calder October 12, 2016 Data Protection, EU GDPR, IT Security

Our internal position on GDPR and Brexit was, on 27th June 2016: The key thing, from a practical point of view, is that negotiations to leave the EU are unlikely to be completed before – at the earliest – October …

[Continue Reading...]

IT Security Archive