The aim of this Privacy Framework is to improve privacy risk management between business/mission drivers and privacy protection activities. It is intended for organizations that use data processing systems, products or services irrespective of their sector, focus or size. …
The Story of Daniel Seid, a PECB Certified ISO/IEC 27001 Master Looking back over the last decade, it’s remarkable how much PECB’s network has achieved and advanced professionally. Such advancement is not only a result of our training development and deliverables, but also of the ways by which we’ve been…
The first edition of ISO 22301 was launched in May 2012. It was the first truly internationally accepted standard on business continuity, and it consists of requirements to implement a Business Continuity Management System according to ISO Annex SL. As such, it stood in line with its prominent predecessors such…
Connectivity is one of the main pillars that are defining life in the 21st century. The level of depth that connectivity defines our routines in this century is truly astonishing. With a particular boost after the first decade of the century, we have developed not only habits, but entirely new…
A politically inclined attack or just a ‘simple’ lack of security awareness? Whatever the case, the cyber-attack that hit Marriott was huge. This was the joint second largest data breach to take place, after Yahoo in 2013 and Equifax in 2017. A cyber attacker stole personal information including names, emails,…
Melbourne has been considered “the most livable city in the world” over the past seven years, this year being dethroned by Vienna, the Austrian capital, according to the Economist Intelligence Unit‘s 2018 rankings. I am originally from Romania and before deciding to live in Melbourne, we lived in Adelaide, South…
The philosopher Santayana is famous for having once warned: “Those who cannot remember the past are condemned to repeat it.” Recent events have provided several sobering examples of just how true that is. The Apple-FBI dispute was perhaps one of the most recent, painful examples we’ve witnessed a debate the…
We are all talking about the future of jobs. But the question that we should perhaps ask, the most essential one, is: How should those jobs look like (or what should those jobs be)? With the evolution of the nature of the job market, we are facing new realities and…
The advent of Software-Defined Vehicles (SDVs) represents a fundamental shift in the automotive industry. SDVs separate software from hardware, allowing high-level software development on generalized hardware systems. This decoupling provides several benefits: it reduces time and costs associated with hardware production, enhances security through simplif ied software systems, and fosters…
In today’s fast-paced business environment, digital transformation is a critical driver of organizational success. As companies increasingly rely on technology to streamline operations, enhance customer experiences, and drive innovation, the role of Chief Information Security Officers (CISOs) has become more crucial than ever. CISOs are responsible for safeguarding their organizations…
In the fast-moving digital age, the tension between privacy and innovation has become one of the most pressing issues in technology law. As artificial intelligence (AI) and cybersecurity technologies advance at an unprecedented pace, there is a growing need for robust frameworks to address the delicate balance between fostering innovation…
When an organization develops its strategic vision, strategic plan, or any other forward-looking initiatives it is critical that the organization integrates an analysis process focused on Issue Identification, Risk, Threat, Vulnerability, Hazard (RTVH) assessment to enhance decision-making and monitor ever changing RTVH mitigation effectiveness. Risk, Threat, Vulnerability, Hazard (RTVH) Identification…
The term “risk” or “enterprise risk,” is a 21st century buzzword, and with good reason. Although the concept of risk is virtually as old as humanity, it has now come to the fore in a spectacular way. Some 45-50 years ago, driven by corporate financial scandals, it emerged as a…
It’s a common message on social media, conferences, and even at office water coolers: No one seems to take security seriously or understand the risk; No one listens to the security team; The company always seems to do what they want and don’t spend the money needed. Why do so…
Imagine waking up to headlines that your company’s customer data has been exposed in a massive breach, leading to millions in fines and irreparable brand damage. In today’s digital-first economy, this is not a far-fetched nightmare—it is a reality for organizations that fail to stay ahead of cyber threats and…
Our current digital age is characterized by an exceptional proliferation of data collection, processing, and dissemination technologies, which presents a profound and multifaceted challenge to individual privacy. Take, for example, the increased prevalence of smart home devices and their associated data collection practices. While offering convenience and automation, these devices…
As a penetration tester, I find the penetration testing activity to be exciting! It’s exciting to be able to attack a target, legally mind you, with the intention of breaking in and stealing data or creating backdoors for persistent connections or any other sort of cool penetration testing activity. Before I…
In today’s fast-paced, interconnected world, organizations face a complex landscape shaped by evolving customer expectations, rapid technological advancements, and an increasingly stringent regulatory environment with unexpected risks and false opportunities. To not only survive but thrive, businesses must embrace strategic change and prioritize operational efficiency. This is where the strategic…
