The aim of this Privacy Framework is to improve privacy risk management between business/mission drivers and privacy protection activities. It is intended for organizations that use data processing systems, products or services irrespective of their sector, focus or size. …
The Story of Daniel Seid, a PECB Certified ISO/IEC 27001 Master Looking back over the last decade, it’s remarkable how much PECB’s network has achieved and advanced professionally. Such advancement is not only a result of our training development and deliverables, but also of the ways by which we’ve been…
The first edition of ISO 22301 was launched in May 2012. It was the first truly internationally accepted standard on business continuity, and it consists of requirements to implement a Business Continuity Management System according to ISO Annex SL. As such, it stood in line with its prominent predecessors such…
Connectivity is one of the main pillars that are defining life in the 21st century. The level of depth that connectivity defines our routines in this century is truly astonishing. With a particular boost after the first decade of the century, we have developed not only habits, but entirely new…
A politically inclined attack or just a ‘simple’ lack of security awareness? Whatever the case, the cyber-attack that hit Marriott was huge. This was the joint second largest data breach to take place, after Yahoo in 2013 and Equifax in 2017. A cyber attacker stole personal information including names, emails,…
Melbourne has been considered “the most livable city in the world” over the past seven years, this year being dethroned by Vienna, the Austrian capital, according to the Economist Intelligence Unit‘s 2018 rankings. I am originally from Romania and before deciding to live in Melbourne, we lived in Adelaide, South…
The philosopher Santayana is famous for having once warned: “Those who cannot remember the past are condemned to repeat it.” Recent events have provided several sobering examples of just how true that is. The Apple-FBI dispute was perhaps one of the most recent, painful examples we’ve witnessed a debate the…
We are all talking about the future of jobs. But the question that we should perhaps ask, the most essential one, is: How should those jobs look like (or what should those jobs be)? With the evolution of the nature of the job market, we are facing new realities and…
Rise in fraudulent transactions and behavior across the globe The main question posed coming out of my training on “Crisis Management and Fraud Response Strategies” to an international audience was: how does a company actively put steps in place to prevent or reduce the likelihood of fraud and embezzlement in…
The Expanding IoT Landscape The era of the Internet of Things (IoT) has ushered in a dramatic expansion of connected devices: sensors, actuators, gateways, smart equipment and embedded systems – collectively forming vast distributed ecosystems that connect the two worlds: the physical and the digital. From smart homes and wearable…
The mind can be strong or weak, organized or chaotic. Every day, it challenges us to think differently, take different actions, and analyze situations, people, and events. It moves us through segments of memory and urges us to predict the future. Thoughts in my head rarely sit still — they…
Recent extreme weather events have demonstrated that climate change is no longer an abstract threat; it is an immediate and pressing reality that affects communities and businesses across all sectors. As a Risk Professional, my view is that climate risk is no longer just a “popular narrative” tied to corporate…
The Shift No One Saw Coming Three years ago, governance, risk, and compliance software meant rigid workflow engines and quarterly audit cycles. Today, it means systems that read regulatory updates in real-time, score operational risk across thousands of transactions per second, and explain their reasoning in plain language. This isn’t…
In the high-stakes world of cybersecurity, ethical hacking has long been the frontline defense against sophisticated adversaries. Traditionally, penetration testers, white hats, rely on manual reconnaissance, vulnerability scanning, and exploit development to uncover weaknesses before malicious actors do. But as of 2025, artificial intelligence (AI) is reshaping this landscape at…
The Evolving Risk Manager Prior to the development of Artificial Intelligence (AI), the general duties of the Risk Manager was to identify and assess the appropriate risks for their organization, analyze them and the organization’s vulnerabilities, propose risk treatment options and report on risk exposure to senior leadership, while developing…
Everyone says they “do AI” now. It’s like driving. Most people can drive to the shops. Fewer can fix the car. Very few can keep a race car on the track when it gets twitchy at high speed. Enterprise AI is the same, and executives are flooded with AI demos.…
The intersection of cloud computing and artificial intelligence (AI) has transitioned from an unknown potential to an everyday reality. In every digital enterprise, there is clear evidence of the impact of the interdependence between developing AI models hosted (and, as needed, operating) on AI computers and systems that use AI…
Cybersecurity has always been a game of cat and mouse, but polymorphic malware changes the rules entirely. It’s the Houdini of malicious code – constantly shifting, rewriting itself, and escaping traditional defenses before they even notice it’s there. You can’t rely on pattern recognition when the pattern mutates every few…
