dora Archives - Page 2 of 5 - Secure And Assure

Cyber 3-2-1: Dry January, JPMorgan, and DORA technical standards

Cyber 3-2-1: Why Dry January was never going to work, what 45 billion attacks tells us about JPMorgan’s cyber security, and why we need to stop worrying about zero days.

Sam Glynn2024-01-21T10:18:02+00:00January 21, 2024|Tags: accountability, cyber321, dora, incident response, regulators, regulatory compliance, risk management, senior executives, software updates, supply chain risk, third party risk management|

Cyber 3-2-1: Christmas, Americans, and Homer Simpson.

Cyber 3-2-1: Christmas from Europe, deepfakes from America, and Homer Simpson.

Sam Glynn2024-01-14T07:58:52+00:00January 14, 2024|Tags: business continuity, cost of attacks, cyber321, data protection, dora, incident response, phishing, regulators, video|

Cyber 3-2-1: What have a nuclear plant, water treatment plants, and 80 law firms have in common?

Cyber 3-2-1: This week, a few stories to bring cyber security a little closer to home. And to put a positive spin on the headlines.

Sam Glynn2023-12-11T14:57:29+00:00December 10, 2023|Tags: business continuity, cisa, cyber321, dora, image, operational resilience, passwords, regulators, risk management, supply chain risk, third party risk management|

Cyber 3-2-1: Backups, doorways, and DORA

Cyber 3-2-1: Reminders about why backups are so valuable, why there are more doorways into your systems than you think, and why the pain of DORA will be worth it.

Sam Glynn2023-12-03T13:07:51+00:00December 3, 2023|Tags: backups, business continuity, cyber321, dora, Google Workspace, microsoft 365, operational resilience, ransomware, regulatory compliance, service provider, supply chain risk, third party risk management|

IRS: What does reasonable security look like?

How to figure out what IRS (Implementing Reasonable Security) looks like for your organisation.

Sam Glynn2023-11-30T17:30:17+00:00November 29, 2023|Tags: accountability, board of directors, central bank, daily, dora, dpc, gdpr, iaf, NIST, regulators, regulatory compliance, risk management, senior executives|

DORA + SEAR + IAF = IRS

DORA; SEAR; IAF. Lots of acronyms. But the only one that matters is IRS.

Sam Glynn2023-11-27T10:05:19+00:00November 27, 2023|Tags: accountability, assessment, board of directors, central bank, daily, dora, iaf, regulators, regulatory compliance, sear, senior executives, whathasthisgottodowithcyber|

What has the Individual Accountability Framework (IAF) got to do with cyber security?

DORA is not what is keeping compliance professionals up at night.

Sam Glynn2023-11-15T10:20:33+00:00November 15, 2023|Tags: accountability, board of directors, central bank, daily, dora, iaf, regulators, regulatory compliance, risk management, senior executives, whathasthisgottodowithcyber|

What has a face mask got to do with cyber security?

Why 1 person wearing a face mask reminded me of the DORA regulation.

Sam Glynn2023-10-09T06:50:33+01:00October 9, 2023|Tags: daily, dora, regulatory compliance, whathasthisgottodowithcyber|

Don’t listen to me. Listen to Microsoft.

Multi-Factor Authentication is no good unless it’s turned on. And another reason to watch Face/Off

Sam Glynn2023-10-11T07:12:54+01:00September 27, 2023|Tags: assessment, board of directors, central bank, crypto fraud, daily, dark web, dora, dpc, gdpr, interview, Multi-Factor Authentication, NIST, passwords, regulators, regulatory compliance, senior executives, service provider, survey, video|

What will you be seeing out there?

In a recent article, I discussed what I’m seeing within financial services firms and the regulations that are keeping them busy. So, what does this mean for businesses that sell to these firms? What will they be seeing?

Sam Glynn2023-09-13T10:36:48+01:00September 13, 2023|Tags: assessment, central bank, daily, dora, regulators, regulatory compliance, risk management, service provider, supply chain risk, third party risk management|