[Organization Name]: Cyber Security Compliance Table of Contents: 1. Introduction 2. Purpose and Scope 3. Policy Statements 3.1. Information Security 3.2. Risk Management 3.3. Compliance 3.4. Roles and Responsibilities 4. Guidelines for Employees 4.1. General Security Practices 4.2. Access Control 4.3. Password Management 4.4. Data Protection and Privacy 4.5. Incident Read more…
Cybersecurity Governance refers to the framework and processes through which an organization manages and oversees its cybersecurity activities. It involves the establishment of policies, procedures, and structures that guide and support the organization’s cybersecurity objectives, risk management, and compliance efforts. The primary goal of cybersecurity governance is to ensure that Read more…
The BS7858 standard is a widely recognized and followed standard within the UK security industry. It specifically pertains to the screening and vetting of individuals employed in security-related roles, ensuring that they meet certain criteria and possess the necessary integrity and reliability. The standard outlines a comprehensive set of guidelines Read more…
ISO 31030 is a standard developed by the International Organization for Standardization (ISO) that provides guidelines for the management of travel risks in organizations. It aims to help organizations identify, assess, and control risks associated with business travel and ensure the safety and well-being of employees. The standard emphasizes the Read more…
Aligning security with business objectives should be a top priority, but that is not always the case for many organizations. Starting with a “Corporate Mission”, it is important to understand all the processes in the value chain required to deliver that mission, and what hurdles must be overcome within each Read more…
The following is a proposed outline structure of a plan for the protection of a soft target, such as a hotel, from a terrorist attack. Introduction The purpose and scope of the plan The threat environment and the likelihood of an attack The consequences of an attack on the hotel Read more…
The Civil Contingencies Act 2004 is a UK legislation that establishes a framework for managing emergencies and ensuring effective contingency planning. The Contingency Planning Regulations 2005 are one of the regulations made under this Act and provide further guidance on specific aspects of contingency planning. Here are the main points Read more…
The modern business environment is ever-changing and unpredictable, making resilience paramount. The ability to anticipate and adapt to change, and to respond quickly and effectively to disruptions and crises is the difference between success and failure for organisations of any scope. But what actually is business resilience and how can Read more…