21 October 2017
Mary Freeman

Retail Perspective

Mary Freeman - Simplify IT Limited

2Posts 10,922Views 6Comments
Information Security

Information Security

The risks from Cyber cime - Hacking - Loss of Data Privacy - Identity Theft and other topical threats - can be greatly reduced by implementation of robust IT Security controls ...
A post relating to this item from Finextra:

Regulators call for substantial IT investment to combat risk deficiencies

22 October 2009  |  8317 views  |  0
3409.jpg
Financial services firms need to make substantial and sustained investments in IT infrastructure if they are to overcome severe underlying weaknesses in their risk management capabilities, according t...

Plan, Do, Manage, Review, Cuthbert, Dibble and Grub

27 April 2011  |  6748 views  |  0

Security and Compliance is an ongoing process. Both in personal and corporate activities, it is worthwhile stepping through the simple four-step process to reduce the risk of compromise.

Plan

In the same way as when you buy a new house, you plan (at least in your head) to change the locks and possibly add locks to the windows, extend insurance to cover loss, and repair things that may fall down and hurt people, when starting a new year, examine the risks your company is exposed to, particularly new ones such as mobile security.

Do

Plans are just that. Without actually changing your locks, you are still vulnerable to the set of keys lost by the previous owner. Without your employees changing their password on a monthly basis, hacked passwords still grant access to your systems.

Manage

It is all very well telling people to do something, but the manager's responsibility is to check it has been done, or the progress, manage the risks and issues and smooth out authorisations.

Review

Crime is not static, nor is the law. Annual, monthly and even daily reviews of new threats or changes is a must.

Cuthbert, Dibble and Grub

Trumpton, anyone? Mnemonics, particularly rhymes, make things easier to remember. Whether it is "Pugh, Pugh, Barney McGrew, Cuthbert, Dibble and Grub" or "Plan, Do, Manage, Review", make the compliance and security messages for workers (employees, directors and contractors) simple and easy to remember and they are more likely to be followed, at least in the most part.

Plan to have a Fire Brigade for when you need to use it TagsSecurityRisk & regulation

Comments: (0)

Comment on this story (membership required)

Latest posts from Mary

Plan, Do, Manage, Review, Cuthbert, Dibble and Grub

27 April 2011  |  6748 views  |  0 comments | recomends Recommends 0 TagsSecurityRisk & regulationGroupInformation Security

People are the biggest vulnerability

27 August 2009  |  4175 views  |  0 comments | recomends Recommends 0 TagsSecurityRisk & regulationGroupInformation Security

Mary's profile

job title Senior Business Analyst
location London
member since 2007
Summary profile See full profile »
Enabling companies to deliver compliant systems that protect information, are able to comply with disclosure requests and are easier to change to mitigate new compliance risks.

Mary's expertise

Member since 2007
2 posts6 comments
What Mary reads
Mary writes about
SecurityRisk & regulation
Mary's blog archive
2011 (1)2009 (1)

Who's commenting on Mary's posts