1. Welcome
Welcome to one of my internet tenancies. Here you’ll find me musing about risks and opportunities relating to information security, information assurance and IT security management.
Switzerland Is Evidence That Confidentia...
The blog post is made of two excerpts from previous confidential documents distributed amongst UK and Regional Stakeholders in the East Midlands (UK). The documents highlighted the existence of evidence that information security could provide a competitive advantage in the information economy and that this could support economic and social prosperity.
Piracy or Antigua Re-branding in the Dig...
The Caribbean in the 1700’s was a hot bed of piracy. Raiding the trade routes and centres which supported the economic and social prosperity of predominately European empires. Looting and stealing property...
UK ICO Fine for Sony PlayStation Hack: D...
The United Kingdom’s data protection regulator, the Information Commissioners Office (ICO), has issued a fine of £250,000, to Sony Computer Entertainment Europe, for a “serious breach” of the UK’s...
DNA Data Storage: Information Security C...
The BBC’s Jonathan Amos has reported that Cambridge scientists have proven, what their US colleagues did in 2012, that data can be stored within DNA and, more importantly, successfully retrieved. My mind...
Are Nation States Resorting to Cybersecu...
In the 17th and 18th Centuries several nation states, including the UK, France and United States all resorted to privateering. Nation states would effectively seek the support of private enterprise to...
Asking to Set a Dangerous Precedent? Hop...
The carrot and stick approach to the adoption of public policy, regarding data protection and information security, isn’t new at all. Breach the law and you are expected to pay the penalty. In the case of...About Me
I have spent nearly all of my career in information security, information assurance & IT security management seeing the executive management challenge as being a balancing act between negative risks to an organisations strategic and operational objectives and the cost of managing these through appropriate internal controls.
Tags
Analogies
BioSecurity
Business Continuity
Cloud security
Confidentiality
Critical National Infrastructure
Cyber Espionage
cyber warfare
data protection
Economics of information security
enforcement
ENISA
foreign policy tool
Future
human vulnerability management
Incident Management
Information assurance
Information security
information security analogies
Information security controls
information security insights
Information Security Risk
information security ROI
information security skills
InfoSec Fringe
Integrity
internal control framework
ISO27001
IT Security
IT security skills
key management
National policy
Policy Conflict
Privacy
Resilience testing
risk management
Secure software development
security awareness
Segregation of duties
Segregation of networks
Supply Chain Management
The Perception Gap
third party risk management
training & awareness
virtual information security
