Luke Irwin Archive
An information security policy is a set of instructions that an organisation gives its staff to help them prevent data breaches. Employees are involved in many of the most common causes of security incidents, whether directly (such as accidental breaches) …
An ISO 27001 risk assessment helps organisations identify, analyse and evaluate weaknesses in their information security processes. It’s a core part of ISO 27001 compliance, informing organisations’ decisions regarding the risks that must be addressed and how they should be …
Ireland’s DPC (Data Protection Commission) has said it will release the findings of its investigation into Facebook and several other high-profile tech companies in June or July. Commissioner Helen Dixon told Bloomberg: “We’re at various concrete stages in all of …
2018 was a mixed bag for information security. According to the Identity Theft Resource Center’s 2018 End-of-Year Data Breach Report, there were fewer recorded data breaches compared to 2017, but there was a 126% increase in the number of breached …
Cyber security is a daunting topic. Every week there’s a new big data breach, experts are constantly warning that “you’re next”, and the threat of fines and other disciplinary action under the GDPR (General Data Protection Regulation) lingers over all …
Organisations that meet the requirements of the GDPR (General Data Protection Regulation) experience a wide variety of benefits, according to a new Cisco report. The 2019 Data Privacy Benchmark Study demonstrates that GDPR compliance makes organisations less susceptible to data …
The cyber threat landscape has evolved rapidly in the past few years. Organisations are increasingly reliant on technology and more eager than ever to collect personal data, but without the resources to protect their systems, cyber crime has flourished. We’ve …
As of 2019, the qualification requirements for QSAs (Qualified Security Assessors) have become much tougher. Assessors must now gain an information security and an IT audit certificate. Under the previous rules, QSAs were only required to hold one of those …
Every organisation has its own unique challenges, but some issues are so fundamental to business operations that they are practically universal. This blog outlines three common problems, and offers a solution for understanding and tackling them. 1. Staff awareness According …
Google has been fined €50 million by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and …
