Control A15.2 of ISO 27001 requires that, as part of an information security management system (ISMS), “managers within an organisation ensure that security policies are followed”. This sounds very sensible – but how do you know that managers are actually …
The EU General Data Protection Regulation (GDPR) has been in effect for almost four weeks now – are you compliant, still working towards compliance or unsure of where to start? Compliance is not optional, and will be or already was …
If you’re new to the international standard for information security management, ISO 27001, you might be finding it difficult to choose a training course that suits your needs. If you can’t decide between a lead auditor and a lead implementer …
This month, IT Governance Europe launched its ISO27001 Certified ISMS Foundation (Distance Learning) training course. This modular recording of our popular one-day classroom course, which is delivered in Cork and Dublin, is the ideal starting point for all prospective ISO …
Dixons Carphone has admitted to a major data breach involving 5.9 million payment cards and 1.2 million personal data records. The incident began in July 2017, when attackers attempted to compromise payment cards in Curry’s PC World and Dixons Travel’s …
In a recent Business Post article, IT Governance founder Alan Calder explained the importance of gaining practical knowledge when learning about topics such as ISO 27001 and the General Data Protection Regulation (GDPR). Alan said: “When we are developing a …
For the past year or so, cyber security experts have been asking, with increasing concern, whether you’ve complied with the EU General Data Protection Regulation (GDPR) yet. Hopefully you have, but it’s important to remember that compliance isn’t a fixed …
With cyber attacks and data breaches on the rise, cyber security is fast becoming organisations’ top priority. Many have chosen to mitigate the risk by implementing an information security management system (ISMS). An ISMS is a system of processes, documents, …
Since the enforcement of the General Data Protection Regulation (GDPR) on 25 May 2018, Ireland’s data watchdog has dealt with 1,300 GDPR queries, and 60 data breaches have been logged by organisations. The watchdog began receiving the first complaints when …
The majority of privacy policy emails sent by organisations in preparation for the EU General Data Protection Regulation (GDPR) were unnecessary, and some were even illegal, a number of data protection experts have said. The problem is with organisations’ interpretation …
