Blackouts: Don’t leave your company in the dark
On Friday 9thAugust 2019, it went dark across many parts of the UK. Train networks stopped and communters were facing an inability to get home due to hours of cancellations, described by Bloomberg as a ‘once-in-a-decade blackout’. The cause? A seemingly unlikely event...
Cyber Security within the Legal Sector
In July 2018, The Law Society and the National Cyber Security Centre released a joint report outlining the threats to the legal sector. The report confirmed what most of us working in the sector knew – that the industry has a low level of cyber maturity meaning that...
Introduction to Penetration Testing
Penetration Testing, Pen Testing, Red Teaming, Security Assessment, IT Health Check and Ethical Hacking are common phrases that describe what we do, that ultimately all mean the same thing - whether or not a determined adversary can gain unauthorised access to your...
PCI DSS – A start, not the end, for the business
It has been estimated that becoming fully PCI compliant gets you no more than 47% of the way towards a recognised industry standard for information security. In this case, ISO 27001:2013. The chart below shows a comparison of how the PCI DSS requirements stack up to...
Supplier Due Diligence – do your existing suppliers take security seriously?
Supplier Due Diligence – do your existing suppliers take security seriously? As businesses become more reliant upon their suppliers within the digital age, it is essential that these relationships are reviewed and monitored to ensure security is being addressed and...
2|SEC Consulting are a Strategic Sponsor of the 19th PCI London event in July 2019
2|SEC Consulting are a Strategic Sponsor of the 19th PCI London event in July 2019, where you can hear from our experts through our keynote presentation and meet the team. For over 20 years, AKJ Associates has provided exclusive networking events for senior security...
The UK Snow Effect: Tips for Business Continuity
As the short days get colder, one threat to UK businesses gets greater. One of few weather’s in the UK that can bring businesses, schools, roads and transport to a standstill. The white, snowflakes that bring joy to children’s faces and terror to business owners....
How do I achieve and maintain ISO 27001 compliance?
By gaining certification or aligning your business to ISO 27001 (Information Security Management), you are demonstrating that you have identified the risks, assessed the implications and implemented controls to limit damage to the organisation. As well as building the...
Equifax is charged the largest fine yet by the ICO for its data breach
The largest fine to date of £500,000 has been charged by the Information Commissioner’s Office (ICO) to Equifax for its data breach. The loss of personal data has affected 15 million Britons. The cyber-attack was carried out in 2017 which means it does not come under...
3 of the biggest cyber and information security risks to businesses
When asked about cyber and information security risks to the business, most think about the technical controls against cybercrime: making sure the IT team has protections such as firewalls and patch management in place; making sure password protection and BYOD...