IOT devices, no time for security.
Linked In
October 10, 2021
Leaving the house, locking the doors, setting the alarm - we make time to be secure
In the internet of things (#IOT) space, security is often an afterthought..
DIY code platforms, make the proliferation of IOT devices easy.
See publication
Tags: Cybersecurity, IoT, Risk Management
An open letter to retirees and the elderly
Linked In
September 29, 2021
The problem with today's digital devices is that we (yes me included) have been forced into their use.
If we want government services we have to use a device or get some help to work out what we need to do.
If we want to stay in contact with family and friends then we need some type of digital device.
To spend, move or borrow money we need some type of digital device to access websites and accounts.
Government departments post everything on their website so you need a device to see it.
See publication
Tags: Cybersecurity, Risk Management, Diversity and Inclusion
Cybersecurity, why CEOs and Boards have it wrong
Website
September 20, 2021
When it comes to digital and business security, board members and C level executives still have it wrong.
Business security is not an IT issue although there are some IT components!
Business security is not a compliance issue but there are compliance requirements!
Business security is all about protecting your assets but before you can protect them you have to identify them
See publication
Tags: Cybersecurity, Risk Management, Business Continuity
Cybersecurity for the C suite executive
Website
September 20, 2021
Let's look at the facts!
No matter the size, shape or industry of an organisation.
No one is fully prepared for a full-on, bare-knuckle, cyber ninja assault.
We are not talking about a random attack.
An attack that is being perpetrated against your organisation with Metasploit and a new copy of Kali.
See publication
Tags: Cybersecurity, Risk Management, Business Continuity
How do we convince the management of any organisation that cybersecurity is the key?
Website
September 20, 2021
“The irony is that a strong cybersecurity posture is one of the greatest business-enabling tools an organization can have in its arsenal.” Robert Herjavec
There is an area in business where the c suite and board members have limited understanding but require a huge focus
An area where getting it wrong could be the end.
That area is the cyber and digital space.
See publication
Tags: Cybersecurity, Risk Management, Business Continuity
Stopping a cyber event is harder than you think!
LinkedIn
March 26, 2021
There are two parts to a cyber event. Both of them are important!
Stopping it from happening and what happens if you cannot.
The business world relies heavily on everything digital to do what they do.
See publication
Tags: Cybersecurity, Risk Management, Business Continuity
To pay the ransom or not!
LinkedIn
March 03, 2021
If you ever have the unfortunate experience of having all of your data encrypted by a cryptovirus then you understand the frustration and sheer horror of the experience.
See publication
Tags: Business Continuity, Cybersecurity, Supply Chain
Why good business security is all about increasing profits, productivity and resilience.
LinkedIn
December 02, 2020
There is a downside to a cyber event and I can tell you, every part is down!
Our role in business security (#cybersecurity) is not to scare the crap out of you but more to educate you in the ways of the cybercriminal.
Have you ever thought about what could happen to your company if you did get hacked?
If your organisation was breached by a target cyber attack?
Here are some calculations for you to think about that are factored in when discussing a breach and calculating the impact.
See publication
Tags: Cybersecurity
How do you prioritise security in business?
LinkedIn
August 30, 2020
#Businesssecurity is not simply about putting the right preventative technology and systems in place.
Most requirements for business security can be expensive, so finding ways to have big wins without huge costs is a win-win situation for SME's.
Good business security requires everyone in the organisation to understand their role in the protection of the data, systems and information gathered and used by the company.
See publication
Tags: Cybersecurity, Risk Management, Business Strategy
Stop thinking cybercrime is about YOU!
linkedin
June 22, 2020
Users of the digital world, especially in business have a litany of reasons why a cyber event would not happen them!
See publication
Tags: Cybersecurity, Management, Privacy
Are you a leader for today?
linkedin
March 21, 2020
If you are in business, leadership is one of those intangible tangibles that makes it work.
This is March 2020, running your SME is now all about survival. There are not many organisations today, that are not in survival mode...
See publication
Tags: Cybersecurity, Management, Leadership
Office 365 is not a backup!
linkedin
March 01, 2020
Most businesses are using office 365 or google apps.
A cloud-based system that delivers access to software with a monthly subscription cost. What could be better for not just SME’s but for any organisation?
We all have now become fans of the software because you can work anywhere and have access to your data at any time.
See publication
Tags: Cybersecurity, Privacy
Why your ICT department is overwhelmed with securing your organisation!
linkedin
February 02, 2020
When it comes to business security, outsourcing to a business security provider, is not, in reality, outsourcing.
See publication
Tags: Cybersecurity
Is training your staff about cyber more important than any other component in business?
linkedin
January 25, 2020
Any cyber event can have serious implications for your business.
Before you say, that wouldn't happen to us!
Let me explain.
From a simple malware infection to a fully compromised system the results on your business can be devastating.
See publication
Tags: Cybersecurity
Why 2020 could be a bad cybersecurity year for SME’s
linkedin
January 11, 2020
SME’s are a prime target for cybercrime.
They have reduced expertise, minimal money, and an attitude, we are too small to be a target, that leaves them wide open to a cyber event.
See publication
Tags: Cybersecurity
Only next year will tell!
linkedin
December 11, 2019
Everyone is doing it so I am going to throw my 10 cents in.
3 Security Predictions for 2020
Manipulation of AI and machine learning by criminal organisations and nation-states.
We constantly underestimate the criminal mind.
See publication
Tags: Cybersecurity, Digital Disruption, Risk Management
If government departments cannot protect their data how do we expect SME’s to do it?
linkedin
November 23, 2019
We keep running into the same major problems when it comes to business and digital security.
If the large corporations, multi nationals and government departments can’t implement decent security and still get hacked after a significant investment in time, money, knowledge and effort, how are small and medium enterprises, charity organisations and not for profits (SME’s) suppose to protect their information.
See publication
Tags: Cybersecurity, Digital Disruption
Calculate the cost of a cyber event
linkedin
November 22, 2019
The internet is rife with automated systems designed to steal information or compromise the unaware, ill-informed and lazy amongst us.
See publication
Tags: Cybersecurity
Digital disruption and business security - are they compatible?
linkedin
November 05, 2019
We have been told digital disruption will change the world. In a number of ways, yes I think that is correct. Where I see a problem is the simple fact that although digital disruption will change the face of business, cybercrime will not be far behind.
See publication
Tags: Cybersecurity, Digital Disruption, Security
The question “How secure are we?” is not helpful!
linkedin
September 25, 2019
When it comes to cybersecurity, risk management and protecting an organisation from a significant cyber event, “How secure are we?” is not a question that should be asked.
See publication
Tags: Cybersecurity
A new breed of service provider and why you need them!
linkedin
July 15, 2019
In the last 20 years, there has been a slow change in how business approaches the management of the ICT component.
See publication
Tags: Cybersecurity, Risk Management
Cybersecurity, Why you need someone who knows what they are doing!
linkedin
July 07, 2019
I was recently the recipient of an email from a company who is selling cybersecurity. Not business to business, not selling to SME’s, but as a vendor selling to managed services providers.
See publication
Tags: Cybersecurity
Is it about time we talked about who owns your data, systems and information?
linkedin
July 01, 2019
One of the things that I have been talking about for the last couple of years is who has sovereignty over your data.
See publication
Tags: Big Data, Cloud
Obviously, we are not learning from other's mistakes!
linkedin
June 21, 2019
"Florida city pays $600,000 ransom to save computer records"
This should never happen, but it does. It regularly happens because there is a fundamental problem with security, cybersecurity and business security.
See publication
Tags: Cybersecurity
You just want to run your business! Here are 7 reasons why you can’t!
linkedin
June 16, 2019
You just want to run your business!
You just want to make enough money to live a nice life. Not rich and famous but not broke either. A fair income for a fair days work.
See publication
Tags: Big Data, Cybersecurity
How can my website be targeted?
linkedin
June 01, 2019
We are often told that a website is not important and does not need any level of protection.
It's just a marketing tool!
This is an assumption that can have devastating effects.
See publication
Tags: Cybersecurity
The difference between large organisations and SME’s in security is significant.
linkedin
May 05, 2019
Mom and pop organisations are the lifeblood of our world and the driving force of the economy. Because they are the powerhouse of the economy they have become a primary target of cybercriminals.
See publication
Tags: Cybersecurity
This is why you need a friggin backup!
linkedin
April 07, 2019
Not just any backup, but a comprehensive copy of everything that is important to your business, organisation or yourself in two different locations.
In three weeks we have been called into five organisaions to get them up and working after a failure, attack or cyber event.
See publication
Tags: Cybersecurity
The Importance of a secure website!
linkedin
January 09, 2019
We are often told that a website is not important and does not need any level of protection. It’s just a marketing tool!
This is an assumption that can have devastating effects.
See publication
Tags: Cybersecurity
AI - Smart or just plain creepy?
linkedin
January 05, 2019
No matter which way you look at it artificial intelligence (AI) is here and in some areas of business here with a bang.
We are constantly told that AI is the only way "us humans" are going to be able to handle the impact of big data. Make sense of all of that information.
See publication
Tags: AI, Cybersecurity
A digital device does what it’s told, the results depend on who’s doing the telling!
linkedin
December 26, 2018
If you are one of the people who only use computers, phones and tablets for what they are designed to do - email, social, banking, you are not in a minority.
You probably have the attitude that that is all they can do!
When it comes to digital device usage, probably 80% of user have this attitude.
See publication
Tags: Cybersecurity
Why Domain Name Services (DNS) keeps your business on line!
linkedin
December 23, 2018
Recently I was talking to a colleague about his email not working.
He had just recently had a new web site built and was told by the designer that it would only work if he changed his web hosting to his hosting company.
He was a very good designer but knew absolutely squat about how the Internet works.
See publication
Tags: Cybersecurity
How safe will your child's Christmas be this year?
linkedin
November 28, 2018
Christmas is coming
Top of the list for children is technology based toys.
Interactive toys!
Smart toys!
You know the ones, digital toys!
Toys that have chips and computers installed in them that allows your children to interact with the toys.
From fluffy toys for 4 year olds to computer based systems for the teens.
But, the security of these systems has to part of your purchasing process.
How can you make sure that the toys that you are purchasing for your kids will not be hijacked by the hackers and their privacy compromised, their information stolen.
See publication
Tags: Cybersecurity
You need a different mind set to manage business security!
linkedin
October 21, 2018
When it comes to cybersecurity, digital security and business security:
Governments are not doing enough,
big business are not doing enough and
especially SMB are not doing enough.
I was recently grading student assignments and there was a something that was mentioned in 95% of them all. Education is the key and we are not doing enough
See publication
Tags: Cybersecurity, Security
Why is it so hard to fix business security?
LinkedIn
September 15, 2018
The responsibilities that boards and management have in today business world are scary.
All the old requirements, of which there are a fair number, are being overshadowed but not replaced by new business insights based on compliance, regulations, ethics and risk.
The old issues and problems have been taught in universities and through the school of hard knocks for years. The new problems are only becoming a reality now. In most cases boards and management are playing catch up.
See publication
Tags: Cybersecurity, Security
What is wrong with today’s managed service providers?
Self
September 13, 2018
In the last 3 weeks we have had a number of new clients, thanks to our sales team, come to us with a problem.
Their problem is that their Managed Services is costing a fortune but they do not seem to get anything in return.
Not that they are not getting support, the problem is that the support they are getting is not noticeable. It is hidden behind service level agreements (SLA) that promote remote work, reporting based on vanity metrics and no contact except through email, SMS or phone.
If you want someone on site, well, that’s an extra cost. It should be included in the SLA because it is not the client’s fault that your skills do not fit the requirements and they should not be paying for your learning curve.
See publication
Tags: Cybersecurity
The results are in - we suck at business security!
Self
September 01, 2018
Last week I was having a go at the managed services industry, this week it is small and medium business and not for profit organisations turn.
The information from the most recent surveys on cybersecurity is in, Telstra and Security in Depth have completed their surveys and it is not looking good for SME's
Some of the stats from the survey are:
60% of all targeted cyber attacks were aimed at SME's
See publication
Tags: Cybersecurity, Security
Why organisations need to change to OFFENSIVE SECURITY to protect their assets.
Self
August 08, 2018
Compliance led soft security is failing.
It leave too many unknowns, creates unpredictable situations and give a false sense of security.
In most cases it just does not work.
But, it looks so good on paper.
If your business security relies on a form, completed by anyone who is available, then the problems associated with a cyber event are not being taken seriously.
Lets face it, if the hackers are saying this,
‘it is not the case that we are so smart, but more a case of the average organisation is deploying inadequate security’.
Then we have a problem with our reality.
See publication
Tags: Cybersecurity
When it comes to cybercrime, protecting 100 clients should be no different from protecting 1,000,000
Self
July 22, 2018
The bulk of cybercrime and cyber events in the news are focused on large multi national organisations and government departments. Newsworthy events are in fact always newsworthy.
These are the organisations we hope and believe are focused on protecting the information that we unwittingly give them through our interaction.
An attack on them makes for great copy. But, the overall problem with cybercrime and cyber events is not the big fish. The big fish are known to have millions of records that should be protected from a cyber attack. Not protecting them reflects in spectacular thefts and large scale reputation failures. Newsworthy events!
See publication
Tags: Cybersecurity
How do you handle the "insider" threat?
LinkedIn
July 14, 2018
The internal “spy” - the insider threat
The hardest attack to defend against in cybersecurity.
There are three types of spy
See publication
Tags: Cybersecurity, Digital Disruption
In today's world, why do you need a good backup!
LinkedIn
June 30, 2018
The focus in todays business world is all about using, collecting and managing data.
Every organisation is collecting information about their customers and clients. Who they are, what their likes and dislikes are, how interested are they in the products and services, that you sell. All of this information is stored somewhere.
See publication
Tags: Cybersecurity
Why we think we are immune to cybercrime!
LinkedIn
June 09, 2018
"As a person, you would not be particularly worried about a trained Ninja accosting you on the street or jumping out at you in a dark alley and beating you senseless.
See publication
Tags: Cybersecurity
Business security needs a quantum attitude change!
LinkedIn
June 03, 2018
The digital world is rife with huge problems mainly derived from the attitudes of the people using it.
The single utterance of “I am too small to be a target” is a good place to start.
See publication
Tags: Cybersecurity, Security
Why do we have the stereotypical attitude that ICT = Cybersecurity
LinkedIn
May 28, 2018
For the last 15 years, ICT departments have been seen as the leading lights when it comes to security. It is no longer their job and their job alone...
See publication
Tags: Cybersecurity
Why do we have the stereotypical attitude that ICT = Cybersecurity
LinkedIn
May 28, 2018
I was recently at a networking event, where everyone was delivering their pitch and listening to everyone else's.
See publication
Tags: Cybersecurity
Cybersecurity, why we have to change, NOW!
LinkedIn
April 08, 2018
Starting to feel like a broken record, But, why do we have to change our attitude to cybersecurity? , “Kicking soapbox along”
See publication
Tags: Cybersecurity
Cybersecurity - we still have the wrong focus!
LinkedIn
March 04, 2018
With the expected $660 billion loss to cybercrime this year, we definitely have to change our understanding, our focus and most importantly our attitude when it comes to business security and cybersecurity.
See publication
Tags: Cybersecurity
When it comes to Business Security, why do we all want to do it ourselves?
LinkedIn
February 04, 2018
Good at your job?
So good in fact that you are doing everything right.
You have the education, experience and drive to make your dream a reality.
See publication
Tags: Cybersecurity, Security
The insider threat, the hardest cybercriminal to keep out!
LinkedIn
January 13, 2018
The internal “spy” - the insider threat
The hardest attack to defend against in cybersecurity.
There are three types of spy
See publication
Tags: Cybersecurity
Are big business, politics and government being outpaced by the digital world?
LinkedIn
December 24, 2017
Disruptive technologies are splintering society. Changing the way that people think, act and communicate.
See publication
Tags: Cybersecurity
Why is there so much CRAP on the internet?
LinkedIn
November 27, 2017
I recently overheard one of my brighter students comment that if you are only researching using the internet then you are not getting the facts.
In some cases you are getting facts out of context or they are out and out lies.
See publication
Tags: Cybersecurity
Why our understanding of illegal has to change!
LinkedIn
November 27, 2017
That was a comment I got from a student recently when I was doing a demonstration of hacking an exploit and taking a picture of the class.
See publication
Tags: Cybersecurity, Legal and IP
How simple is it to perpetrate a cybercrime?
LinkedIn
November 27, 2017
We have bad rabbit, equifax, NSA, Ashley Madison, Sony(x2), Mirai and Eternalblue in just the last 12 months and everyone of them will have a significant impact on anyone who had information in those systems.
See publication
Tags: Cybersecurity
Why is one dimensional business security still sold?
LinkedIn
November 11, 2017
To protect your organisation a number of questions have to be asked, they have minimal involvement from the IT world, they are all fact based and relate to risk management.
See publication
Tags: Cybersecurity, Security
Is our attitude to the digital world the same as our attitude to science 1000 years ago?
LinkedIn
November 04, 2017
Artificial intelligence, machine learning, robotics, drones and 3D printing, technologies that are going to change the world, once again.
See publication
Tags: Cybersecurity
Digital transformation and the Cybersecurity envelope
LinkedIn
October 30, 2017
Digital transformation - the new catch phrase of organisations. Bleeding edge systems that have started to be used in business!
It allows business to do things faster, better and with more control than ever before.
See publication
Tags: Cybersecurity
Patch management - when can you find the time to patch and why it is a problem!
LinkedIn
October 20, 2017
The Equifax issue has highlighted the importance of patching and patching systems within a timely period of time.
In today's world, especially in large organisations, this simple process becomes highly controversial and difficult.
See publication
Tags: Cybersecurity
Security experts needed, but are we listening!
LinkedIn
October 09, 2017
We are a necessary evil because we say and do things that people think only we know how to do it and the bad guys would never do that.
See publication
Tags: Cybersecurity
What every CEO and CIO should know about cybersecurity
LinkedIn
October 01, 2017
The problem with cybersecurity is it is not sexy.
In most cases it is down right boring.
Although not sexy and down right boring it is still something that every CEO, manager, owner and board member has to focus on.
See publication
Tags: Cybersecurity
We are constantly reminded that the digital world is unsafe but are we listening?
LinkedIn
September 16, 2017
Cyber attack after cyber attack.
This company has been breached.
That information has been leaked to the Dark Web
See publication
Tags: Cybersecurity
Weakening encryption - definitely erring on the side of STUPID
linkedin
July 14, 2017
Once again we have seen politicians step in to change the very face of science and mathematics. This is one of the articles.
To me the argument for unsecured communication via the Australian government shows just how out of sync they really are with reality and especially the digital world.
Apart from all of the other half baked idiotic ideas that they come up with - a back door to encryption is one of the stupidest.
See publication
Tags: Cybersecurity
Shiny and new is great but don’t forget security!
Self
July 01, 2011
If you remove these restrictions then any organisation can be secure.
To change our attitude we have to do something to protect the organisation. That something is focus.
Using a framework allows them to focus on each little thing that when combined with all of the other little things builds into a way to protect the organisation.
See publication
Tags: Cybersecurity
Why are there so many cybersecurity issues
LinkedIn
March 05, 2021
There are so many cybersecurity issues out there in the digital world actually focusing on any single problem is like nailing jelly to the wall.
Each of those issues has a focus, in some cases a single focus on what the problem is, how it can be managed and what business and organisations can do to counteract the issue.
See publication
Tags: Cybersecurity, Risk Management, Business Continuity
3 philosophies we rely on to be secure!
LinkedIn
February 10, 2021
These three philosophies for business security have nothing to do with security.
Business security is many things to many people and companies
It is the driving force ensuring you are not the news on the internet.
See publication
Tags: Cybersecurity, Risk Management, Business Strategy
Why good business security is all about increasing profits, productivity and resilience.
LinkedIn
December 03, 2020
There is a downside to a cyber event and I can tell you, every part is down!
Our role in business security (#cybersecurity) is not to scare the crap out of you but more to educate you in the ways of the cybercriminal.
See publication
Tags: Cybersecurity, Risk Management, Security
How do you prioritise security in business?
LinkedIn
August 31, 2020
#Businesssecurity is not simply about putting the right preventative technology and systems in place.
See publication
Tags: Risk Management, Business Strategy, Security
Stop thinking cybercrime is about YOU!
LinkedIn
June 22, 2020
Users of the digital world, especially in business have a litany of reasons why a cyber event would not happen them!
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
Are you a leader for today?
LinkedIn
March 21, 2020
If you are in business, leadership is one of those intangible tangibles that makes it work.
This is March 2020, running your SME is now all about survival. There are not many organisations today, that are not in survival mode.
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
Office 365 is not a backup!
LinkedIn
March 01, 2020
Most businesses are using office 365 or google apps.
A cloud-based system that delivers access to software with a monthly subscription cost. What could be better for not just SME’s but for any organisation?
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
Why your ICT department is overwhelmed with securing your organisation!
LinkedIn
February 03, 2020
When it comes to business security, outsourcing to a business security provider, is not, in reality, outsourcing.
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
Is training your staff about cyber more important than any other component in business?
LinkedIn
January 25, 2020
Any cyber event can have serious implications for your business.
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
Why 2020 could be a bad cybersecurity year for SME’s
LinkedIn
January 12, 2020
It is hard to predict an outcome when it comes to business security - Boy was this prediction wrong
See publication
Tags: Business Strategy, Cybersecurity, Risk Management
How do you handle the "insider" threat?
CyberCrime - A Clear and Present Danger The CEO's Guide to Cyber Security
The Basics of Business Information Security
Thought Leader Interview with Roger Smith, CEO, R and I ICT Consulting Services
Cybersecurity Excellence Awards educator of the year
TOO SMALL TO BE A TARGET?
Using the 2 person rule for security
Business Security Insights
It's a big issue when your own people think that IT is security
When it comes to cybercrime, protecting 100 clients should be no different from protecting 1,000,000
