No organisation is an island. In cyber security, that’s not just a philosophical point. It’s a hard truth. Our dependencies, on software vendors, cloud services,… Read More »Securing What You Don’t Control: What Mature Organisations Get Right About Supplier Risk
Insider threats remain one of the most underestimated risks in enterprise security. Unlike external attackers, insiders often operate with legitimate access, contextual knowledge, and trusted… Read More »What Mature Organisations Get Right About Insider Threat
As the use of artificial intelligence continues to expand across core business functions, the question is no longer whether these systems introduce new risk, but… Read More »Operational Uncertainty: Securing the Behaviour of AI Systems
As cyber threats evolve in complexity and frequency, ransomware and malware have emerged not merely as disruptive nuisances, but as existential risks to enterprise operations.… Read More »A Structured Approach to Ransomware Resilience
It’s no longer a theoretical conversation. Most organisations, in some form or another, are now deploying AI systems, whether it’s a machine learning model that… Read More »What Secure AI Looks Like in the Real World
If you’re responsible for cyber in a business, you already know: your own perimeter is no longer your biggest blind spot. The real threats often… Read More »Securing the Entire Chain: How to Mature Your Supply Chain Cyber Security Strategy
Most companies have a breach response plan tucked away somewhere. A PDF gathering dust. A phone tree from five years ago. A few bullet points… Read More »Rethinking Cyber Crisis Management for Business Leaders
In many organisations the instinct is always to build taller walls, install stronger locks, and shore up defences. That makes sense, prevention has to be… Read More »Why Resilience Matters as Much as Defence in Cyber Security
At The-C2 this year, managed security services came up in more than one breakout room, corridor chat and follow-up conversation. There was general agreement that… Read More »Procured, Not Protected? What to Watch When Outsourcing Cyber Security
One of the more thought-provoking discussions I had recently started during The-C2 conference and continued in a meeting shortly after with a delegate I’d connected… Read More »From Unexpected Outputs to Real-World Risk: A Practical Look at AI Behaviour