The effectiveness of cyber security across the UK critical infrastructure sector has been an area of concern for a long time. The original EU NIS directive of 2016 (some background is here) led to regulations being adopted across all member states in...
Read MoreThe European Union formally adopted NIS2, the successor to the NIS directive, late 2022. NIS2 came into force in January 2023 and all EU states now have 21 months in which to enact national legalisation. They are required to establish the necessary rules,...
Read MoreWe continue to see the publication of guidance, advice and regulations by various international cyber security agencies. These have been for specific sectors, suppliers to government and for businesses more generally. What varies, and it seems to depend...
Read MoreThe Australian Securities & Investments Commission’s (ASIC) plans for 2022-26 include driving good cyber risk and operational resilience practices across all sectors of the economy for 2022-2026. A big question is how to simplify the process of...
Read MoreCritical infrastructure and its security has never been more in the spotlight; and it’s no different in the EU. The number of cyber disruptions across the globe to key service providers like water, power and financial services suppliers has brought...
Read MoreSecurity advisories everywhere are warning of heightened threats in the Critical Infrastructure (CI) sector, and recent world events are unlikely to slow the trend. Off the back of new security agency mandates in the US, planned strengthening of security...
Read MoreIn late November 2021 an APRA Insight report noted that it expected boards to have the same level of confidence and capability in reviewing IT cyber security issues as any other business issue. It also noted that during the preceding period, described...
Read MoreAs an increasing number of regulators and industry bodies are adopting stronger policies and frameworks, monitoring cyber security controls has become an important area of focus for boards and executives.
Read MoreThe Office of the Australian Information Commissioner (OAIC) released its latest statistics on notifiable data breaches covering the period from January to June 2020. Interestingly, this report showed a 3% decrease in the number of breaches in this period,...
Read MoreThe new Australian Cyber Security Strategy 2020 lays down some interesting plans for the coming years relating to how the Federal Government will enhance its own cyber capability, while introducing legislation that affects all companies.
Read More