Tag: security

  • AI, Privacy and Security (Part 1)

    Is the genie out of the bottle? AI has to be the topic of the year. Everyone is talking about it. Smarter people than me have written about it in great detail. I want to reflect on several ideas pertaining to AI. The first one is really a note about the need for caution. There…

  • Essential 8 – Is it really that hard?

    10 years on and the government still can’t get the basics of Cyber Security right. The Auditor General report on “key internal controls” – or more specifically the Essential 8 – showed that most departments are failing to do this properly. Back around 2013/4 the then DSD published a set of four compulsory requirements for…

  • Reporting risk to the board – What not to do

    I have spoken with board members and it is clear that “C” levels are not reporting cyber risk to them in a meaningful way. Modern boards are tired of seeing traffic light reports. The reporting can no longer say – this risk is red but don’t worry – we have a risk mitigation plan. “I…