Author Archives: cma76

The GDPR introduces a duty on all organisations to report certain types of personal data breach to the relevant supervisory authority. You must do this within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk of adversely affecting individuals’ rights and freedoms, youContinue reading “What information should we tell individuals who have been affected by a GDPR breach? How do we notify a breach? What should we do to prepare for breach reporting?”

British Airways data breach compromises approximate 500,000 customers personal data and costs company 183 million in fines. “The Swedish DPA has issued an administrative fine of 35 000 EUR towards Mrkoll.se – a site that publishes personal data of all Swedes above the age of 16 – for infringement of the credit information Act andContinue reading “GDPR company’s violations and fines.”

GDPR (General Data Protection Regulation) outlines 6 data protection principles that must be adhered to when processing personal data. These principles are: used fairly, lawfully and transparently used for specified, explicit purposes used in a way that is adequate, relevant and limited to only what is necessary accurate and, where necessary, kept up to dateContinue reading “What is GDPR?”

What makes a good cyber security policy? It must be relevant to your audience. It must coordinate with your business needs. It is applicable to the compliance and/or regulatory frameworks that you operate under. It is as short as possible. Professional bodies relevant to cyber security professionals. International Association for Cryptologic Research. CIUSPA – TheContinue reading “Information/cyber security policies and professional bodies.”

Information governance is an organisation’s plan of policies and procedures for managing its information. It covers personal data as well as corporate information. “An example of this could be: “The Information Governance framework covers all staff that create, store, share and dispose of information. It sets out the procedures for sharing information with stakeholders, partners and suppliers”

THE ROLE OF A SECURITY PROFESSIONAL IN CYBER SECURITY Cyber security professionals are responsible for protecting IT infrastructure, edge devices, networks, and data They are responsible for preventing data breaches and monitoring and reacting to attacks.  Set and implement user access controls and identity and access management systems Monitor network and application performance to identifyContinue reading “Cyber security attacks in the last 5 years and what could have been done differently as a security professional”

My view is everyone in life face ethical dilemmas where it is in business or pleasure. A scenario relating to a cyber security dilemma. A help desk advisor is good friends with the head of technology. The head of technology helped the advisor get his role. There has been whispers about the organisation that 2Continue reading “Do cyber security professionals face ethical dilemmas?”

Employers benefit from professional standards as it keeps employees following good professional ethics and rules. When starting a new role within a company a contract is given which is read and signed agreeing to certain standards, rules and regulations. If professional standards were not in place employees would have no rules to follow. For exampleContinue reading “How do employers benefit from professional standards? What would happen if there are no professional standards in an organisation?”

I think if a business wants to attract potential customers and clients then they need to spot a business being professional and having good ethics. Its also important for employees to feel safe in their work environment and be confident they will be treated with integrity and respect. Lets look at a few case studiesContinue reading “Do I think business benefits from ethics and professionalism?”

Data breach. Cambridge Analytica scandal: the biggest revelations so far. Below is a statement copied from the wikipedia about a data breach on facebook. “The Facebook–Cambridge Analytica data scandal was a major political scandal in early 2018 when it was revealed that Cambridge Analytica had harvested the personal data of millions of peoples’ Facebook profiles without their consent and used itContinue reading “Describe one ethical issue in cyber security in relation to harms to privacy”