Niall McElroy

Niall McElroy is a Fellow of the Chartered Institute of Information Security and CISSP certified cyber security expert with a track record of building relationships and delivering programmes of work for clients in major commercial organisations across telecommunications & financial services sectors, as well as defence, central & local government departments.

Get in touch:

Niall's posts

Precision vs accuracy in risk assessments

The concept of precision versus accuracy comes up across many industries, and is ultimately the same set of principles used in relation to data and how it is used.

Risks without impacts: attack path analysis

A little while ago, I was presented with a familiar problem statement from a Cydea client who was a cyber security manager at a large organisation: “There’s a new cyber vulnerability in the Operating System we use on the handheld devices used by our engineers out in the field; how do I communicate the resultant change in risk profile to the organisation?

The link between risk scenarios and detection use cases

Earlier last year, I delivered a webinar on the importance of mapping risks and understanding threat coverage for a successful security monitoring strategy.

How to Write KRIs for Executive Reporting

In a previous blog post, we looked at the difference between KPIs and KRIs. So what’s the best way to come up with some Key Risk Indicators (KRIs) for your business?

Understanding the difference between KPIs and KRIs

We often see Key Performance Indicators and Key Risk Indicators (KPIs and KRIs) grouped together on cyber reporting dashboards, but there is an important distinction to be made between them.