ISO 27001 extends privacy controls – what this means in practice
The International Organisation for Standardization (ISO) recently published an extension to ISO/IEC 27001 and 27002 for privacy information management. In this post, we’re going to take a closer look at this development. As regular readers of this blog will know, we at BH Consulting are big supporters of the ISO 27001 information security standard (note: […]
Sales & Marketing Administrator
BH Consulting is a vendor independent consulting firm providing market leading range of information security services focused on data protection and cybersecurity. We are currently looking for a Sales and Marketing Administrator, to work mainly with our Head of Sales and Business Development Manager, in supporting them in sales and marketing activities. Commencing Date: […]
Six steps to better mobile device security
When I conduct security awareness sessions with companies, many people are surprised to discover mobile apps can potentially be malicious. To make matters worse, it’s getting harder to spot risky apps. You might expect obvious red flags, but a recent incident shows how hard mobile device security is for security professionals and regular users alike. […]
Cybersecurity threats and solutions: 13 steps to better protection
Once the realm of IT security professionals, cybersecurity is now an issue and concern for all business people. The scale and volume of cybersecurity threats to business has been steadily increasing. There are many examples of high-profile security breaches such as those at BA and the Marriott hotel Group which exposed millions of people’s personal details. […]
Security Roundup September 2019
House of cards collapses from privacy overreach One of the summer’s big data privacy stories saw Ireland’s data protection watchdog criticise the Government’s Public Services Card scheme. Originally just for accessing social welfare payments, the PSC scheme expanded over time. The DPC’s investigation found the Government had no legal basis to tell citizens they needed […]
Good password practice
Few things are as central to the concept of security as passwords. Guarded by those who have them, coveted by those who want them, passwords are the keys to the proverbial kingdom. The kingdom in this case being the ever-expanding range of online services we use in our daily lives. Passwords unlock services that help […]
Lessons learned from public services card
Today the DPC provided its 170 page long awaited findings into the validity of the Public Services Card (PSC) to the Department of Social Protection leading to calls for the Minister to resign – so how badly did the Irish Government violate our data protection rights? Initial concerns were raised about the card some years ago as […]
Data protection roles in customer service and trust
Some organisations and companies are “hiding behind” their data protection and privacy obligations, and it’s leading to poor customer service. In doing so, they’re missing an opportunity to build trust and deliver a better customer experience. That’s the view of Valerie Lyons, BH Consulting’s COO and senior consultant, in a recent interview with the Irish Independent. The General […]
Security roundup: August 2019
Every month, we dig through cybersecurity research, trends, advice and news for our readers. This month: pwning an entire country, data protection developments, and why anonymised data could still add up to your identity. Bulgarian rhapsody As data breaches go, four million records barely registers on the scale these days but this one was different. […]
Nine lessons for strong incident response and recovery in a data breach
Data breaches are rarely out of the headlines, but the recent proposed fines against BA and Marriott will have pushed this risk back to the forefront for many businesses. Like many security threats, breaches are nothing new; we’ve covered this subject on our blog many times in the past. A data breach can take many […]