Latest Posts
The COO’s Guide to the Cyber Security and Resilience Bill for Financial Services
New UK legislation is about to turn cyber resilience from guidance into enforceable law. While financial services firms remain regulated by the Financial Conduct Authority and Prudential Regulation Authority, the Cyber Security and Resilience Bill will impose strict obligations on the suppliers you depend on — from MSPs to data centres. For COOs, this is a critical moment to strengthen supply-chain oversight, incident readiness, and executive accountability before the rules take effect in 2026.
The Security Risks Behind Company-Approved AI Tools
Even enterprise-grade AI tools like Microsoft Copilot or customer-facing chatbots can introduce legal and security risks if left ungoverned.
HOW AI TOOLS LIKE ChatGPT CREATE SECURITY RISKS FOR FIRMS
With ChatGPT and other AI tools embedded in our daily workflows, the biggest cyber risk in your firm might not be a hacker; it is more likely a well-intended employee.
AI-Driven Cyberattacks: Are You Ready?
Traditional Cyber Awareness Is No Longer Enough. Here’s What Regulated Firms Need to Do Now.
The Biggest Cybersecurity Threat Isn’t Who You Think It Is
Your organisation’s greatest security risk isn’t a shadowy hacker in a hoodie – it’s the well-meaning employee who shares passwords to meet a project deadline, uses Dropbox because the approved file-sharing system is too slow, or clicks on a phishing email from what appears to be a trusted colleague.
MFA Isn’t Enough: Real Stories from the Frontlines
Cybersecurity is about minimizing risk. But as leaders, we need to ask ourselves the harder question: are we building systems that hold up when people
The Cyber Governance Code of Practice, Broken Down
Cyber governance is no longer a “nice to have”. It’s a board-level imperative.
The UK’s new Cyber Governance Code of Practice outlines the minimum standards that regulators, clients, and insurers expect from boardrooms in medium and large organisations.
This Code shifts cyber from IT’s responsibility to the board’s. If you’re a COO, compliance lead, or board member, this applies to you now.
What the UK’s New Software Security Code Really Means
If you sell or build software in the UK, you’ve just been handed a new benchmark to hit.
The Department for Science, Innovation and Technology (DSIT) has introduced a new Software Security Code of Practice. It’s voluntary—for now—but if you’re a CTO, CISO or technical leader in a SaaS business, vendor firm, or IoT provider, it’s already showing up in audits and RFPs.
Best Practices for Effective Intrusion Detection and Prevention
In today’s cybersecurity landscape, organisations face an increasing number of sophisticated threats targeting their networks, systems, and sensitive data. Cybercriminals employ advanced techniques to exploit