Tag: BeyondCyber
-
Addressing the myths in the TSA
Building on from my previous article giving an overview of the Telecommunications Security Framework, I’m now going to look at some of the myths that have arisen around the subject which need addressing to ensure that organisations and professionals alike are aligned in the level of understanding required to move forward to achieve compliance. Myth… Read more
-
Don’t CoP a packet, understanding the Telecommunications Security Framework
I’ve been involved in many compliance frameworks, predominantly within the Telecommunications industry over the past decade, and the most recent one in Telecommunications (the Telecommunications Security Framework) is getting a lot of visibility – maybe because it has big financial penalties being mentioned and the security industry likes a big penalty to get the attention… Read more
-
Has compliance kept up with digital during the pandemic?
The pandemic has delivered 7 years of transformation in the space of a year but just as companies are facing up to the financial debts from the past year, so we are able to quantify the compliance debts to be paid through analysis of the DCMS breaches survey from 2021. I looked at last years study to see… Read more
-
Getting back to basics post COVID
After the largest transformational event in decades, which ripped the corporate rulebook up and forced organisations beyond the firewall and into home working and the Cloud, we are emerging into a new way of working after implementing 10yrs worth of corporate change into a couple of months. Just how useful was your compliance during COVID?… Read more
-
Is the burden of compliance increasing in Telecomms?
I read Matt Warman’s article in CityAM this morning regarding the impending regulation to enforce the Telecommunications Security Regulation (or Framework) through the Telecommunications Security Bill with interest, given that the following statement was attributed to him: The telecoms industry is responsible by law for the security of these networks, but commercial business models are failing to incentivise best practice —… Read more
-
Creating the network platform for the data revolution
The recent announcement of the launch of a consultation on the government’s data strategy marks an important step in the United Kingdom’s evolution of its services industry. The opportunity from digital is clear The government states that they “need a data strategy that reflects the opportunities and challenges of our new hyper-digital world, one that ensures we weigh… Read more
-
Back to cyber security basics – learning from easyJet
Another day another breach, this time for EasyJet who announced that it has been the target of an attack from a highly sophisticated source. Here’s what has been published so far. “Our investigation found that the email address and travel details of approximately 9 million customers were accessed. These affected customers will be contacted in the next… Read more
-
Does board perception meet reality for cyber security?
During the lockdown due to the coronavirus, I’m struck by how rapidly society and healthcare are adapting to remote working in alignment with the government guidance in the UK. We have seen increasing tolerance towards using internet-facing systems for care of vulnerable patients and temporary relaxation of data protection and cyber security standards for health and social care.… Read more
-
COVID-19 and BCP – is your governance remotely working?
COVID-19 (Also known as coronavirus) has taken us all by surprise. The most interesting aspect though is the home working advice which will have driven a coach and horses through many certified management systems for information security (ISO/IEC-27001:2017) and business continuity (ISO/IEC-22301:2012). The reason for this is that many of these management systems rely on… Read more
-
The first GDPR fine is in – and it’s not Cyber related!
Happy New Year and health and happiness to all. The first financial penalty has arrived! As you have no doubt been enjoying the festive period and recharging your batteries, you’ll be forgiven for missing the first actual financial penalty under the applied General Data Protection Regulations (GDPR), implemented under the Data Protection Act 2018 (DPA… Read more