CISO

Blog / CISO

Using Organisational Culture to Improve Cyber Security

cybersecurity culture CISO   

We consistently recommend that you build a resilient business where cyber-security a priority. But what does organisational culture have to do with improving cyber-security? As most managers and CISOs know, one of the least static areas of business is cyber security. That’s because more than half of the fraud in the UK is conducted online. Therefore, in light of mounting attacks, it’s important to increase awareness at the company level. Plus, to ensure your cybersecurity policies are effective, you must get buy-in and action from all levels of staff.

Managing Third-Party Risk - the Importance of Real-Time Intelligence

ciso security   

Managing third-party risk is inevitable when you work with vendors, suppliers, contractors, and business partners. And the harrowing thing is that you have no control over their networks or security. On-off or snapshot assessments of third-party risks still leave your business vulnerable as neither your business nor the third-party’s operates in a static environment. As things change in real time, you need real-time intelligence to manage third-party risk in your firm.

Insider Threats: A CISO Nightmare

security insider-threat CISO   

With insider threats, your biggest assets become your biggest risks. One of today’s most damaging security threat comes from trusted insiders. Insider threats can come from anyone in your organisation, from those with the highest access to your company data to those who you think have no access at all. Your insiders are both employees and third parties. The risk is at all levels. Its no wonder that 25% of all security incidents involve company insiders.

Topics

atlassian ciso cloud covid19 crime culture cybersecurity employees insider-threat malware office365 remote-working security semafore

Featured

Should Employee Training include CyberSecurity?

Let me start by stating the obvious - it pays to offer continuous and comprehensive employee training. A Life with Health CEO Aimee Tariq explains why...

Effective Information Security & Risk Management ISRM Programmes

Let us start by stating an age-old maxim : You cannot eliminate all risks. But you can reduce the level of risks to an acceptable standard. That’s why...