The Most Damaging Data Breaches Are Preventable: Here’s How
We all know that many organisations could do better at data protection. The UK government’s Cyber Security Breaches Survey 2025 highlights a ...
ISMS.online Blog
Compliance Matters
Keeping you up-to-date on the world of information security and compliance.
What Increased Defence Spending Means For The Cybersecurity Sector
As geopolitical tensions continue to rise globally, 2025 has seen a dramatic increase in defence spending not witnessed since the Cold War. In rece...
Cyber Incidents Are Testing the Resilience of Global Airlines
The next time you slowly amble down an aeroplane aisle, spare a thought for the incredible work that got you there, from aviation engineering throu...
Where AI Threats Are Heading, and What to Do About Them
When the National Cyber Security Centre (NCSC) published its first predictions around AI in 2024, it was a sobering moment for the cybersecurity co...
How Nation-State Attacks are Shaping Cybersecurity
You might be able to defend yourself against attacks from hacktivists and even from organized criminal groups. But good luck chancing your arm agai...
How Nation-State Attacks are Shaping Cybersecurity
You might be able to defend yourself against attacks from hacktivists and even from organized criminal groups. But good luck chancing your arm agai...
GDPR Update: What the Data (Use and Access) Act Means for Compliance Teams
An update to the UK’s version of the GDPR is long overdue. The previous Conservative government originally proposed it via the Data Protectio...
Leadership Strategies for Balancing Security Workloads and Compliance Success
The pressure on today’s security and compliance teams is relentless. With escalating regulatory demands, evolving cyber threats, and constrai...
Stay ahead of the headlines with the IO newsletter
Get a monthly round-up of all the information, privacy and cyber security news direct to your inbox.
Verizon’s DBIR 2025 Versus Your Board: What They’re Missing
CISOs are increasingly invited to board meetings. A Splunk survey from January found that 83% participate somewhat often or most of the time, while...
Retail Under Fire: Would You Spot a Breach If It Happened Right Now?
Retailers and their suppliers are having a tough time in the UK right now. A string of major security breaches tied to ransomware actors has left s...
How To Tame Shadow AI
Remember shadow IT? It has a disruptive new sibling: shadow AI. As employees warm to the time-saving capabilities of generative AI models, theyR...
Why Regulators Are Favouring A Converged Approach To Cyber Resilience
As the digital ecosystem expands exponentially and cybercriminals seek to exploit security holes within it, regulators continue to apply pressure o...
The Government Is Consulting on an Enterprise IoT Security Law. What Happens Next?
The Internet of Things (IoT) is often thought of as a technologically advanced ecosystem of “next-gen” devices and back-end systems. In...
Future-Proofing Privacy Compliance: Strategies to Adapt to a Changing Landscape
More than five years after the EU General Data Protection Regulation (GDPR) came into force, the global privacy regulatory landscape is still evolv...
Cybersecurity and Privacy: NIST’s Framework Given Facelift
NIST recently announced plans to refresh its privacy framework and make it more of an organic offering and less static. Does this benefit practitio...
Learning from Oracle: What Not to Do After a Data Breach
The first half of this year has not been a happy one for Oracle or its customers. The company has suffered from two serious data breaches. This is ...
The Cyber Security and Resilience Bill: What You Need to Know
The road to cyber resilience for UK critical infrastructure (CNI) has been a long and winding one. The government’s NIS Regulations 2018 is w...
