The Story of the Frolicking Insider
This is a tale of a lawsuit following a data breach that stemmed from a disgruntled employee who purposefully leaked his co-workers data. Should the company be responsible? The UK courts made their decision.
Richard is the Advisory CISO for the EMEA region. He was previously with DXC - HPE - where he was a Chief Technologist in the Security Practice working with clients across all industries and regions. Prior to that, he worked for Symantec for many years. He has also held posts with security industry organisations such as IAAC and the IISP, and has worked on cyber resilience reports with the World Economic Forum.
This is a tale of a lawsuit following a data breach that stemmed from a disgruntled employee who purposefully leaked his co-workers data. Should the company be responsible? The UK courts made their decision.
Things are changing in the world and in security. I make a few predictions on what might come and how it could be very interesting indeed.
Firstly privacy regulation can be a good thing. Often when any issue of compliance or regulation is mentioned, it is seen as yet another set of controls to be implemented or a new reporting overhead. All to be done by the CISO, within a constrained budget, and shortage of resources. Allow me to explain.
In this post we break down how to adopt Zero Trust for EU orgs into 5 simple steps. Often there is the question – “But where and how do we start?” The answer can be as precise as “Wherever it is appropriate.”
After being immersed in the mayhem that is RSA I often wonder if it is what you miss rather than what you see that is so intriguing. In this post, I will share with you my key takeaways from this year's RSA.