AI penetration test: how to conduct an exposure assessment to mitigate AI risks
Welcome to this week’s Security Spotlight, where we shine a light on:?
?
New Q&A | How to address AI security risks with ISO 27001?
AI is taking the world by storm. But for all its potential, there are legitimate concerns around, among other things, data security.?
Bridget Kenyon, lead editor for ISO 27001:2022, talked to us about:?
?
New blog | 8 ways to reduce your PCI compliance burden?
Our head of PCI consulting services, Sujith Parambath, explains 8 ways you can reduce your PCI scope.?
They include:?
?
New blog | How long does Europrivacy certification take if you’re already GDPR compliant??
Alice Turley, a certified Europrivacy Lead Implementer and Lead Auditor, explains in this blog for IT Governance Europe:?
?
Blog update | Analysing the ICO PECR fines for unsolicited marketing?
Our sister company DQM GRC has updated its analysis of ICO PECR fines for unsolicited marketing.?
The ICO has now issued 43 fines since March 2022, which have so far cost UK organisations £4,120,000.?
?
领英推荐
Q&A | Where to start with cyber security risk management?
Risk management lies at the heart of cyber security.?
But where do you begin to manage your risks??
Our head of GRC consultancy, Damian Garcia, explains.??
?
Q&A | Cyber Essentials vs ISO 27001: Key differences?
With so many ‘best-practice’ frameworks available, how do you choose the right one for your organisation??
Cyber security advisor Ash Brett explains two popular options: Cyber Essentials and ISO 27001.?
He covers:?
?
Free green paper | Implementing an ISMS – The nine-step approach?
Good information security is about addressing the risks specific to your organisation without compromising your business objectives.?
So, take an approach that’s both strategic and operational.?
An ISMS – preferably aligned with ISO 27001 – takes a systematic approach to managing confidential information so that it remains secure.?
This paper explains our 9-step approach to implementation, which we’ve used to help 800+ organisations around the world achieve ISO 27001 compliance.?
?
Free webinar | Ensuring DSAR compliance: Navigating requests and building customer trust?
Thursday, 26 September 2024, 3:00–4:00 pm (BST)?
DSARs are a critical component of GDPR compliance, allowing individuals to access their personal data held by organisations.?
In this webinar, our DSAR experts – Dr Loredana Tassone and Helen Pettit – will guide you through the entire DSAR process, from verifying the requester’s identity to formally disclosing information.?
You’ll gain practical knowledge and the tools to handle DSARs efficiently while maintaining GDPR compliance and building trust with customers.?
?
Workshop | Information Security Risk Assessment Workshop?
Tuesday, 22 October 2024, 2:00–4:00 pm (BST)?
This hands-on 2-hour workshop improves your skills in conducting an information security risk assessment – a critical process for securing your organisation.?
Become confident in your ability to identify, assess and mitigate risks methodically while working with internal teams and suppliers.?
Led by Andrew Pattison, head of GRC consultancy of IT Governance Europe, this session will guide you through the practical application of risk assessments using a real-world example.?
We previously interviewed Andrew about pragmatic ISO 27001 risk assessments and third-party risk management .?
?
Speak to a cyber security expert?
With 20+ years’ experience in cyber security, we understand risk management.?
Our experts have implemented cyber security programmes for hundreds of organisations across a multitude of industries in both the private and public sectors.?
New to the world of cyber security and need advice on how to get started??
Or updating an existing cyber security programme??
Our cyber security experts are here to help.?