Data Protection Set to Loom Large Over Infosecurity Europe 2018

by Bharat Mistry

This year’s Infosecurity Europe will be the first to take place under the new data protection regime brought in by the long-awaited EU GDPR. It’s going to be interesting to see how much coverage the new law gets. I’d wager, more than you’d think, because compliance doesn’t end on 25 May — for many firms, it will only start once the reality of the new legislation hits home. As we were reminded this week by a £120,000 fine handed down to Greenwich University, the regulator will come down hard on organisations that fail on cybersecurity. Continue reading

Preventing Cyber-Physical Disaster: An IoT Masterclass at Infosecurity Europe

by Ross Baker

The Internet of Things (IoT) offers tremendous value to organisations, their customers and employees, driving business agility, productivity, cost reductions and much more. That’s why the total number of connected things is predicted to top 20 billion by 2020. Unfortunately, this IoT explosion also creates unique opportunities for cybercriminals. Of these, attacks which impact the physical world are arguably the most serious, potentially leading to costly service disruption and even loss of life.

That’s why we’ll be sharing some key best practice tips with attendees at Infosecurity Europe next month on how organisations can mitigate the risks of IoT-powered cyber-physical attacks. Continue reading

Picking Through Vendor FUD as Infosecurity Europe Approaches

by Bharat Mistry

We’ve hit a period of relative calm in the cybersecurity space over the past few weeks with no new reports of major breaches or threats. In fact, there have actually been a few positive news announcements of late, with UK organisations spending more on threat protection and seeing some decent results.

But as the annual Infosecurity Europe event next month draws nearer, perhaps we should remind ourselves that the industry is still filled with marketing claims which don’t necessarily tell the whole story. IT security buyers therefore need to focus their spending carefully if they want to maximise ROI. Continue reading

GDPR Compliance is Not Mission Impossible

by Bharat Mistry

With one month to go until the GDPR compliance deadline, there are many organisations still struggling to get the right security processes and controls in place. A new global poll of senior legal officers from KPMG found that over half of (54%) feel their businesses is not prepared for the new privacy laws. Yet it doesn’t have to be this way. The biggest challenge with regulations like GDPR has been interpretation not only for the organisation but also for the certifying body. In the case of GDPR these are written in legal terms as opposed to technological ones, making it challenging to know what exactly needs to be done in order to be compliant. Proven frameworks such as NIST 800-53 can support a solid information security programme to help appease regulators. Continue reading