I had to deliver a presentation recently, so thought I would pop together my thoughts here. It was about ensuring that any investment in penetration testing my wisely spent. If we want the business to use pen-testing. We need to know what it is, they wish to test. For instance: What’s Vulnerable (our information assets)… Continue reading Pen Test ‘ology’ and Bang for Buck
Operational security (for me) is a constantly evolving and an always interesting arena to work in. The bad guys always have more time than you (and technically they are quite smart as well). Whilst having a coffee and a chat recently, we began talking about security standards in a given environment. I jumped on my… Continue reading 27001 reasons for different standards
This is nothing new. You need to protect your system though what do you need to do and how much do you need to spend to protect it ? First – what are you protecting ? I am guessing an operating capability and also information. Ask the question. The whole of your IT goes down,… Continue reading What really is the risk ?