Risk Management Archive
Reporting an incident allows individuals to look out for suspicious activity, such as money disappearing from their bank accounts, and enables them to take steps to protect themselves. Notification also helps other organisations prepare for similar attacks.
Phishing is one of the most frustrating threats we face. Most of know what it is and how it works, but we still get caught out. The scam, which involves criminals sending messages that masquerade as legitimate organisations, targets hundreds of millions …
BCM (business continuity management) describes the process of planning for disruptive incidents. Organisations do this by identifying potential threats and analysing their impact on day-to-day operations. Effective BCM ensures that organisations can provide an acceptable service in the event of a disaster, …
Software solutions are the simplest way for organisations to address many of their cyber security threats. All you need to do is pick out and purchase the right tools and away you go. Unlike the other aspects of the cyber security triad – processes and people – there’s often no need to carefully curate solutions that …
A key corporate governance objective is to ensure that the organisation has an appropriate balance of risk and reward in its business operations and, as a consequence, enterprise risk management (ERM) increasingly provides a framework within which organisations can assess and …
Credit unions in Ireland are required to conduct a penetration test once a year, and send the results to the Central Bank of Ireland for review. According to a report published by the Bank last year, credit unions are getting better at doing this. But for those that are still …
It seems like we hear about another data breach on a daily basis. Recognised companies such as Facebook, Ticketmaster and Dixons Carphone – to name but a few – have recently suffered at the hands of criminal hackers, who are gaining access to organisations’ networks using a variety …
With data breaches on the rise and affecting Irish organisations of all sizes, it may be time you took the GDPR (General Data Protection Regulation) seriously and began to implement a compliance plan. Could your organisation report a breach to the DPC (Data Protection Commissioner) within the required 72 hours?
On Tuesday, 25 September, Facebook discovered a major data breach that gave criminal hackers the ability to take over user accounts.
50 million Facebook users worldwide may be impacted by the breach, including about 5 million European accounts.
The Irish DPC (Data …
The most effective way for organisations to improve their cyber security posture is to implement an ISMS (information security management system). The international standard ISO 27001 describes best practices for an ISMS. Certifying to the Standard can be hard work, …
