Monthly Archives: July 2017

Contrarisk Security Podcast #0046: Governance and compliance

Information security is often an afterthought in an organisation’s planning and spending. And as a subset of that, Governance, Risk and Compliance (GRC) struggles to get the high-level attention it needs. In part this stems from the fact that GRC activities have traditionally been spread around various departments and functions within the organisation, with no overall control or strategy. There… Read more »

Contrarisk Security Podcast #0045: The threat to healthcare data

Healthcare organisations globally are facing the same issues. Data breaches are increasing whether through the accidental loss of data or as a result of cyber-attacks. Health organisations are responsible for the care of large amounts of personally identifiable information (PII), and data doesn’t get much more personal that when it involves medical records. To complicate matters, medical practices of all… Read more »