APRA’s CPS 234 and Supply Chain Compliance: FAQs
In June 2020, we hosted a webinar on APRA’s CPS 234 Information Security Standard (“CPS 234”), addressing supply chain risk management and compliance, as well as how to apply for the deadline extension. We have provided responses below to the questions asked by attendees on CPS 234 compliance and the process for ensuring that supply chain risk is managed effectively.
The Computer Misuse Act (CMA) turns 30 years old
Today marks 30 years since the Computer Misuse Act (CMA) received royal assent in the UK. Since 1990, our physical and cyber worlds have evolved drastically, meaning that the Act is now out of date. To mark this occasion, we sat down with our head of public affairs, Katharina Sommer, to find out more about the CMA – including why we should care about it, and what needs to change.
Hospitals and ransomware: The human cost of weak cybersecurity
In our latest blog we investigate why healthcare organisations are a prime target for ransomware attacks and provides guidance on how to best deal with an attack.
Easing lockdown - UK hospitality starts to open for business
The gradual relaxation of lockdown restrictions brings opportunity and complexity as businesses get ready to reopen their doors in a new way in order to keep staff and customers safe and secure. As we navigate new challenges and adapt to new working procedures, it is important to ensure that we continue to prioritise people’s privacy and that data protection legislation is adhered to.
NCC Group hosts first virtual UK Academic Centres of Excellence in Cyber Security Research (ACE-CSR) conference
This week, here at NCC Group we hosted the 2020 light virtual version of the Academic Centres of Excellence in Cyber Security Research (ACE-CSR) conference as a Microsoft Teams Live event on 24 & 25 June.
NCC Group named Authorized Lab by ioXt Alliance to enhance security standards in Internet of Things product development
NCC Group has been named as an Authorized Lab by the ioXt Alliance, the Global Standard for IoT Security and the industry group dedicated to building confidence in Internet of Things products.
The road to a successful implementation of SIEM and SOC
Having a SIEM solution or a managed SOC in place can be hugely rewarding, providing you with “eyes and ears” on what happens on your systems and network, while supporting your ongoing compliance efforts. But it can also be an extra expense that does not live up to your expectations, providing little true value, or even worse: a false sense of security.
NCC Group advises on security and privacy for Danish COVID-19 app
NCC Group is proud to have collaborated with the Danish Ministry of Health on the security of the newly launched COVID-19 contact tracing app.
Three Important Nuances of the CCPA
The California Consumer Privacy Act (CCPA) became a law about two (2) years ago and went into effect January 1, 2020. Since then, the CCPA has undergone some proposed changes that have recently been f
As the cyber attack against Australia ramps up, it's time to take action
Prime Minister Scott Morrison has formally addressed Australia this morning, stating that our organisations are being targeted by a sophisticated state-based actor. The Government have attributed the
The link between patient safety and cyber security
Although the link between cyber security and patient safety could be considered obvious to some, there are still, perhaps, several key stakeholders that may not have these two views aligned closely enough. Stuart Kurutac, security consultant at NCC Group, explores how we can improve the awareness of the effect that cyber security issues pose to patient safety.
On the Road to Zero Trust in Transport: Introducing Automotive Ethernet
As part of our Always On, Always Here campaign, Security Consultant, Liz James, explains how Automotive Ethernet can make connected vehicles safer and more secure by providing opportunities for zero trust.