Risk Management

What do you do when there’s more than one risk?

What do you do when there’s more than one risk? Let’s do a little thought experiment. Imagine that you’re in charge of controlling cyber security risks in your organisation, and that you can only afford to implement one control this quarter.

More What do you do when there’s more than one risk?...

Even if your data’s in the cloud, its security is still your problem

“We don’t need to have our own encryption keys, all of our data is in the cloud.” Cloud services are a useful resource for shifting CapEx (capital expenditure) requirements to OpEx (operational expenditure).

More Even if your data’s in the cloud, its security is still your problem...

The importance of supply chain security

All businesses have a supply chain, no matter what size of business you are. As businesses grow, their supply chain is likely to grow even further.

More The importance of supply chain security...

Autonomous vehicles and their cyber security

They may not be quite like Glen A. Larson depicted them in the 80’s TV series “Knight Rider”, but autonomous vehicles are here.

More Autonomous vehicles and their cyber security...

What is social engineering?

“Social engineering” is when threat actors use manipulation and deception to persuade a victim into doing either revealing something (such as credentials) or doing something (such as transferring money).

More What is social engineering?...

We’re building an app and need your help!

We’ve been developing a better way to measure and manage cyber risk. This approach underpins our cyber risk analysis engagements, which we’ve had fantastic feedback from clients on.

More We’re building an app and need your help!...

Qualitative and quantitative risk analysis

Let’s start with some dictionary definitions: Qualitative, adj: “based on information that cannot be easily measured, such as people’s opinions and feelings, rather than on information that can be shown in numbers”

More Qualitative and quantitative risk analysis...

Managing portfolio cyber security

A few weeks ago, we brought together people from private capital to discuss cyber security in portfolios and how value creation steers it.

More Managing portfolio cyber security...