The AWS Outage And The Cybersecurity Ripple Effect
As the risk of outages surges, what can firms do to manage the cybersecurity ripple effects such as phishing and social engineering? By Kate O’Flah...
ISMS.online Blog
Compliance Matters
Keeping you up-to-date on the world of information security and compliance.
What the Salesforce Breaches Teach Us About Shared Accountability
2025 hasn’t been a good year for Salesforce clients. A shady criminal group mounted a series of attacks on its customers, ultimately affectin...
Build Once, Comply Everywhere: The Multi-Framework Compliance Playbook
The Compliance Complexity Problem As the regulatory burden on businesses grows, so does the need for multi-framework compliance. Faced with req...
When it Comes to OT, Visibility Is the Foundation of Effective Security
IT often grabs the headlines, especially now we’re embarking on a new age of AI-powered everything. But it is operational technology (OT) that stil...
Assessing the Trump Administration’s Shift in U.S. Cybersecurity Policy
Recent executive actions and agency restructures mark a significant change in federal cybersecurity strategy, raising questions about national resi...
Continuous Control in Action: New API and Integration Updates from IO
When we first launched our Public API in 2024, it opened the door to a new era of flexibility and automation for our customers. For the first time,...
What the Deloitte Australia Saga Says About the Risks of Managing AI
Generative AI (GenAI) has scaled the heady heights of industry hype since it burst onto the scene in late 2022. Now it is entering what Gartner cal...
The NCSC Says “It Is Time to Act”, But How?
It’s unusual to see an open letter from a business leader at the start of a government cybersecurity report. Especially someone whose company has j...
Stay ahead of the headlines with the IO newsletter
Get a monthly round-up of all the information, privacy and cyber security news direct to your inbox.
How Integrated Compliance Transforms Risk Management and Efficiency
Across industries, the compliance conversation is changing. Regulatory demands are rising, cyber threats are escalating, and stakeholder expectatio...
The Spine-Tingling Cyber Incidents Scaring Us This Halloween
The past few years have seen an array of high-profile cyber incidents, from supply chain attacks to zero-day vulnerabilities, ransomware to deepfak...
Heathrow Cyber Incident: Lessons in Resilience and Incident Response
As regulators mandate resilience in business operations, what can others learn from the cyberattack on a supplier that impacted Heathrow and its pe...
Continuous Control Made Simple: Intune and Entra Now in IO
At ISMS.online (IO), our mission is simple. To make information security management effortless. And that means helping you stay compliant not just ...
Why the FTC’s Chatbot Investigation Should Worry B2B Companies
September was a watershed moment for advocates of AI ethics. The FTC issued Section 6(b) orders to seven major tech companies that produce chatbots...
Could ISO 42001 Become the UK’s De Facto AI Regulator?
When the European Union voted through the AI Act in the latter part of 2024, it made history as the world’s first attempt to comprehensively ...
What an npm Attack Says About the Risks of Open-Source Software
The history of open-source security is littered with examples of catastrophic failings and near misses. A crypto-malware campaign discovered in ear...
More Than Checkboxes – Why Standards Are Now a Business Imperative
Every October, World Standards Day passes with little fanfare. Perhaps it’s because for many, it evokes images of bureaucratic paperwork, dry...
Can the UK Create a Multibillion-Pound AI Assurance Sector?
The government is going all-in on AI. Announced in January, its AI Opportunities Action Plan seeks to drive economic growth, improve the quality of...
