Security Roundup April 2025
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Third-party risk rises as a factor in breaches: Verizon DBIR 2025 Verizon’s latest annual Data Breach Investigations Report (DBIR) shows some concerning trends with a sharp escalation in global cyber threats. Landed earlier than usual, the 2025 edition found that […]
ISACA impressions: AI, risk and resilience feature at the 2025 conference
The ISACA Ireland Chapter Conference on 11 April brought together thought leaders in AI, cybersecurity, auditing, governance, and quantum computing. What stood out wasn’t just the topics, but how interconnected these seemingly distinct domains are becoming in today’s fast-evolving digital landscape. I had the incredible opportunity to attend the event, and here’s a reflection on […]
Security Roundup March 2025
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Finland finds state support sharpens SME security A report has found “significant improvements” to the security of 50 small businesses in Finland after a national fund was set up to help them. Between 2023 and 2024, Traficom’s Finnish Cyber Security […]
How boards can manage digital governance in the age of AI
If there is one statistic that sums up the increasing pace of technological change, it might well be this. Gartner forecasts that by 2026, more than 80 per cent of businesses will implement Generative AI in their production environments. To put this into context, GenAI use in business was just 5 per cent in 2023, […]
How effective is the EDPB website auditing tool for checking GDPR compliance?
Websites change and evolve frequently, so how can organisations ensure their sites stay on the right side of privacy regulations? Regular audits can help them achieve this goal – and the European Data Protection Board (EDPB) provides a free tool to do just that. I will share firsthand findings from an in-depth test, to determine […]
International Women’s Day: accelerating action against online harms
In cybersecurity, danger isn’t distributed equally. It’s a sad fact that women experience higher rates of online harassment, threats, and discrimination than men. This year’s International Women’s Day has the theme of Accelerate Action to address gender inequality, so, we’re going to look at how this subject plays out online. There’s a lot of evidence […]
Top 5 tips for self-certification to the EU-US Data Privacy Framework
Trust is a critical component of any successful organization. Without trust, relationships between employees, customers, and other stakeholders can quickly deteriorate, leading to a breakdown in communication and collaboration. The relationship between privacy and trust is complex and intertwined. Privacy is an essential element of trust, as individuals and organizations are more likely to trust […]
Security Roundup February 2025
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. The law’s long arm reaches wrongdoers Let’s start with some good news (for a change). Cybercriminals felt the heat from law enforcement last year, while ransomware payments fell. At the end of January, police forces from eight countries took down two of […]
Security Roundup January 2025
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Cyber risk remains top of mind for business leaders A regular January fixture, the World Economic Forum’s Global Risk Report 2025 features two technology-related threats among the top five risks for the year ahead and beyond. The report ranks risks by severity […]
Data Protection Day 2025: three takeaways for embedding privacy principles
A key theme of Data Protection Day 2025 is the evolving mandate of data protection. I feel this concept of evolution is worth exploring in more detail, because many organisations think of themselves either as ‘compliant’ or ‘not there yet’. That mindset doesn’t always allow for responding to changes in privacy and data protection. So […]