Free flash briefing: CrowdStrike – What went wrong and how to avoid being Strike 2

Welcome to this week’s Security Spotlight, where we shine a light on:?

• Tomorrow’s free flash briefing on CrowdStrike?

• Expert insight into lessons from CrowdStrike about contracts, insurance and business continuity?

• Expert insight into managing supply chain risk?

• ISO 27001 risk assessments in 3 simple steps?

• Easily meeting the PCI DSS requirements on awareness training?

• The first step to GDPR compliance: ROPAs?

• Our free green paper on business continuity?

• A free infographic on cookies?

• Two upcoming webinars?

?

Free flash briefing | CrowdStrike – What went wrong and how to avoid being Strike 2?

Tomorrow, 4:00 – 4:15 pm (BST)?

• Analysis of the outage?

• Immediate steps and strategies to mitigate similar risks?

• Best practices for cyber security, disaster recovery and business continuity?

Register now?

?

New blog | CrowdStrike: Lessons on contracts, insurance and business continuity?

Information security manager Adam Seamons gave his expert insight into the CrowdStrike outage.?

We discussed:?

• The fix and its challenges?

• Risks of complex supply chains?

• How to secure your supply chain?

• The importance of confidentiality, integrity and availability?

• Turning black swan events into business opportunities?

Read the full interview?

?

Simplifying third-party risk management?

Head of GRC consultancy at IT Governance Europe Andrew Pattison explained:?

• The importance of simple risk assessments?

• How DORA might change how organisations manage risk?

• How to simplifying supply chain risk management?

• Considerations around risk when outsourcing?

Read the full interview?

?

New blog | ISO 27001 risk assessments in 3 simple steps?

Risk assessment is a fundamental part of ISO 27001.?

So, it’s important to get it right.?

This blog explains 3 simple steps for conducting an ISO 27001 risk assessment:?

1. Risk identification?
2. Risk analysis?
3. Risk evaluation?

Read more?

?

New blog | How to easily meet the PCI DSS awareness training requirements?

Most organisations within scope of the PCI DSS must meet sub-requirement 12.6: “security awareness education is an ongoing activity”.?

What are the requirements, exactly? And how can organisations easily meet them??

Read more?

?

New blog | The first step to GDPR compliance: ROPAs?

ROPAs are the cornerstone of GDPR compliance.?

Louise Brooks, head of consultancy DQM GRC (our sister company), explains:?

• What ROPAs are?

• Why they’re important?

• When the GDPR requires them?

• What information to include?

• Tips for completing them?

Read more?

?

Free green paper | Business Continuity and ISO 22301 – Preparing for disruption?

CrowdStrike has taught us the importance of preparing for disruption.?

Learn about business continuity fundamentals:?

• Risk assessment?

• Business impact analysis?

• Business continuity plans?

This paper also explains our 9-step approach to implementing a BCMS aligned with ISO 22301.?

Download now??

?

Free infographic | Cookies: What you need to know?

Cookies are small files that collect information about you when you visit a website.?

Get a basic overview of the different types of cookies, so you can better understand how using or accepting cookies may affect you.?

Download now??

?

Free webinar | Navigating the 2024 Privacy Landscape with ISO 27001 and CyberComply?

Wednesday, 14 August 2024, 3:00 pm (BST)?

As global data privacy laws tighten, compliance professionals face a complex maze of regulations that can be overwhelming.?

This webinar with Alan Calder will cover:?

• An overview of the 2024 data privacy landscape and the role of ISO 27001?

• Key changes in EU–US data privacy frameworks and the implications for organisations?

• Strategies for leveraging ISO 27001 to enhance data protection and GDPR compliance?

• The importance of adopting an integrated approach to privacy compliance?

Register now?

?

Free panel discussion: Bridging DORA and Compliance Frameworks with an ISO 27001-Certified ISMS?

Wednesday, 4 September 2024, 3:00 pm (BST)?

In an era where DORA and other regulatory frameworks are shaping the landscape of cyber compliance, ISO 27001 emerges as a linchpin.?

What are the synergies between ISO 27001 and a myriad of compliance frameworks? How can a robust, certified ISMS serve as a bridge to compliance and resilience??

This panel discussion, featuring Alan Calder, Alice Turley and Andrew Pattison, will explore these questions and more.?

Register now?

?

Speak to a cyber security expert?

With 20+ years’ experience in cyber security, we understand risk management.?

Our experts have implemented cyber security programmes for hundreds of organisations across a multitude of industries in both the private and public sectors.?

New to the world of cyber security and need advice on how to get started??

Or updating an existing cyber security programme??

Our cyber security experts are here to help.?

Get in touch?