What are 5 top cyber security frameworks?

Welcome to this week’s Security Spotlight, where we shine a light on:?

• 5 top cyber security frameworks ?

• A new blog, explaining the GDPR’s 6 data protection principles ?

• How to implement an AI policy ?

• Expert insight into ransomware trends and secure remote working ?

• The GDPR lawful bases and data subject rights ?

• Our guide on transitioning to ISO 27001:2022 ?

• Our green paper on how to implement an ISMS , using our 9-step approach?

• Our upcoming webinar on ISO 27001 certification ?

?

What are 5 top cyber security frameworks??

1. NIST CSF?
2. CIS Critical Security Controls?
3. NIST SP 800-53?
4. PCI DSS?
5. ISO 27001?

Learn more about each in this new blog.?

Read more ?

?

Understanding the 6 GDPR data protection principles?

6 data protection principles lie at the heart of the GDPR. Get an overview of each, along with practical tips for complying with them, in this blog.?

Read more ?

?

How to create an AI policy?

For all its benefits, adopting AI technology comes with challenges – such as ensuring the accuracy of AI-generated information, maintaining the quality of AI outputs and addressing ethical concerns.?

That’s where a well-thought-out AI policy comes into play. This type of policy prepares your organisation to thrive in the rapidly evolving AI landscape.?

Read more ??

?

Vanessa Horton on ransomware trends?

We talked to cyber incident responder Vanessa about:?

• Ransomware trends?

• Why these trends are worrying?

• How to decide whether to pay the ransom?

• Why ransomware groups favour exfiltration over encryption?

• What to do if you suffer an exfiltration attack?

• The importance of root-cause analysis?

• Mitigating the damage done?

• Preventing future attacks?

Read the full Q&A ?

?

Leon Teale on secure remote working?

We talked to senior penetration tester Leon about:?

• How to secure remote infrastructure?

• Best-practice guidance for home working?

• Risks of working in public areas and using public Wi-Fi?

• How to remain secure while working in public, e.g. in airports?

• Pros and cons of different VPNs: OpenVPN, SSTP, L2TP/IPsec and PPTP?

• His top 10 tips for secure remote working, whether at home or in public?

Read the full Q&A ?

?

Louise Brooks on GDPR lawful bases and data subject rights?

We talked to head of consultancy at DQM GRC Louise about:?

• The 6 lawful bases for processing under the GDPR?

• Why consent should be a last resort?

• Conditions for valid consent?

• Documenting consent?

• The 8 data subject rights?

• How to accommodate these rights?

Read the full Q&A ?

?

Free green paper: ISO 27001 and ISO 27002 – Transitioning to the 2022 standards?

Looking to transition to ISO 27001:2022? This free green paper can help.?

Download now ?

?

Free green paper: Implementing an ISMS – The nine-step approach?

Yet to implement an ISMS? Discover our tried-and-tested 9-step approach, which we’ve used to help over 800 organisations implement ISO 27001.?

Download now ?

?

Free webinar: FastTrack ISO 27001 Certification – Compliance and Continual Improvement?

Wednesday, 26 June 2024, 3:00 pm (BST)?

This webinar focuses on how you can achieve ISO 27001 certification within 6 months.?

It’ll also explore how to maintain momentum to continually improve your ISMS.?

ISO 27001 pioneer Alan Calder will take you through:?

• Streamlining the certification process with FastTrack? expertise?

• Preparing for certification and selecting a certification body?

• Developing a checklist to ensure you have evidence of an ISMS in action?

• Tips for a successful certification audit and maintaining compliance with ISO 27001:2022?

• Strategies for continually improving your ISMS and adapting to changing threats and risks?

Register now ?

We previously interviewed Alan about ISO 27001’s business benefits, regulatory compliance, risk assessment and continual improvement.?

This webinar will go into more depth, plus you’ll get to put your questions to Alan in a live Q&A.?

?

Speak to a cyber security expert?

With over 20 years’ experience in cyber security, we understand risk management.?

Our experts have implemented cyber security programmes for hundreds of organisations across a multitude of industries in both the private and public sectors.?

New to the world of cyber security and need advice on how to get started??

Or updating an existing cyber security programme??

Our cyber security experts are here to help.?

Get in touch ?