Third party risk Assessing the visibility of supply chain risks

How can you assess the visibility of supply chain risk? “Different organisations – customers, suppliers – have different views about …

Leadership Learning from the pandemic

What advice do you have for fellow infosec leaders on what you've learned? "Keep it simple and straightforward. I’d much …

Third party risk Business continuity and the supply chain

What is the best way to build a business continuity plan that outlines alternative suppliers? “Make sure resilience is built …

Communication Reporting suspicious activity

How are you encouraging staff to report anything suspicious? "What we’ve emphasised to colleagues is that there is no blame …

Resilience Cyber resilience and the supply chain

How does resilience manifest itself when it comes to alternative suppliers? "You ned to think about the wose case scenario …

Communication CISOs and the Board: communicating effectively

Do you find that CISOs find difficulty communicating business issues with top leadership? "If you explain this as a technical …

Communication Explaining best practice security to the team

How are you communicating best security practices with your team now and what has changed? "The thing we try not …

Risk management Communicating cyber risk to the board

What is the best way to communicate these risks with the board? “The true business impact of an risk needs …

Cyber security Improving security: it’s a question of trust

Sponsored by Okta
Millions of people throughout the country are now working remotely. To some, this new way of working comes as a …

Security awareness Has security awareness training been up-to-scratch?

"Yesterday's hack is not tomorrow's hack.  If you focused your effort on training people to identify that thing that happened …

Security awareness Should phishing tests be changing for the remote workforce?

"Phishing tests don't teach anybody anything.  They teach the organisation to ignore things." Ahead of teissR3 | Resilience, Response and …

Crisis response How should organisations be changing their Incident Response planning because of the pandemic?

"You don't need a plan.  You need the capability to respond.  You don't get the capability to respond from a …