Blog

We regularly post our thinking here because ideas are best shared. It might be our approach to solving a problem (we’re not fans of reinventing the wheel!), perhaps simply something else entirely that has piqued our interest! We cover methods for cyber risk assessment, approaches for cyber risk quantification, tools and templates for cyber risk management, tips for running successful security programmes, and much more!

You can join us at @cydeaHQ on Twitter, or our LinkedIn page to discuss any of our posts. If you’d like to know each time we add a new post, you can subscribe for notifications and a few other choice bits of content.

Starting a career in the world of cyber security

For the first four years of my professional life I worked as a Development Engineer in the Automotive Engineering industry. It’s been a full year now since I made the decision to change fields to the rapidly expanding industry of Cyber Security, and now feels like a good time to reflect on my journey so far: my background, why I made the jump, and my reflections against what I expected.

Continue reading...

How to Write KRIs for Executive Reporting

In a previous blog post, we looked at the difference between KPIs and KRIs. So what’s the best way to come up with some Key Risk Indicators (KRIs) for your business?

Continue reading...

Certification is about rules, compliance is about trust

Various schemes and standards exist to provide assurance of baseline controls and good cyber security practices within an organisation. They may be internationally recognised such as ISO 27001, or even government backed, like the UK government scheme Cyber Essentials or IASME Governance.

Continue reading...

Get early access to Cydea's Risk App

It feels like a long time ago now. On 4th March 2020 we put the call out for help in developing a better way to measure and manage cyber risk.

Continue reading...

Why is estimating an important skill?

How many sweets are in the jar? As well as playing an important role in our daily lives, estimates are crucial to an organisation’s success.

Continue reading...

How to develop cyber security consciousness

Good security depends on people being aware about security issues. A good way to minimise cyber risk is by encouraging people to be more security conscious in the first place.

Continue reading...

Understanding the difference between KPIs and KRIs

We often see Key Performance Indicators and Key Risk Indicators (KPIs and KRIs) grouped together on cyber reporting dashboards, but there is an important distinction to be made between them.

Continue reading...

Risk Advisory: Russian invasion of Ukraine

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.

Continue reading...

Risk Advisory: Log4Shell Remote Code Execution Vulnerability

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.

Continue reading...

January 2022 updates to the Cyber Essentials scheme

Like many of our clients, Cydea has achieved the UK government-backed scheme to help organisation protect themselves from common cyber threats.

Continue reading...

Risk Advisory: Kaseya VSA ‘supply-chain attack’

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.

Continue reading...

Risk Advisory: PrintNightmare

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.

Continue reading...

#RansomAware: stop shaming, share intelligence and fight back against ransomware attacks

Today, the world is seeing businesses of all sizes suffer devastating attacks from ransomware. In the last few months, massive attacks on Colonial Pipeline and JBS have disrupted services and earned cybercriminals millions of pounds.

Continue reading...

TechUK article highlights the qualities CISOs need in 2021

Cydea, and our partners Atkins, are featured in techUK’s #Cyber2021 week. The guest blog post reinforces basic cyber hygiene, such as understanding what you are defending, as an important part of any cyber strategy.

Continue reading...

Announcing Cydea x Good Causes

Since founding Cydea eighteen months ago our mission has been to bring positive security to the world. Some of that is contributing to open source projects or releasing tools free of charge through cydea.

Continue reading...