Cyber Security

GDPR Just got Updated – Please Introduce Yourself to Some new BS and ISOs!

00GDPR Discovery ReviewTags: , , , , September, 19

So, just when you thought the GDPR was all done and dusted, you hear that interminable phrase, “there’s a new ISO standard we need to conform with”.

Your heart sinks.

Your blood pressure rises.

Surely, all that hard work you put into complying with the GDPR was enough for now?

No, but there’s nothing to worry about, because this is your no-nonsense, jargon-free(ish) guide to ISO27701.

More info

adventure-bay-beach-307008 (1)

Manage your Supply Chain – ‘No man is an island ?’

00Business Process and Standards, Cyber Essentials, Enterprise Risk Management, GDPR Discovery Review, Supply ChainTags: , , , , , , August, 18

I don’t believe that any one of us working in any type of organisation, regardless of whether you’re a small business, a charity, a school or even a sole trader today can operate without the products or services of a 3rd party provider. We may well have chosen to outsource our accountancy, HR, IT and compliance management requirements. Equally, our clients outsource to us e.g. audit requirements, Data Protection Officer and so on. Our Clients all have a dependency on us to deliver services. Here at Risk Evolves – we’re no different. We’re great examples of the fact that very few, if any, organisations can operate without the support of a 3rd party. A 3rd party could be providing IT, critical resource, logistics support, payroll services, catering, cleaning etc. And yet, how many of us step back and analyse exactly what we would do if one of those third parties wasn’t available one day. What happened if they were to suffer a flood to their premises so that they couldn’t operate, if they were to go out of business, cease to provide the service that we are reliant on, be acquired by another organisation – the list goes on. More info

so-why-bother-with-certific

So why bother with certifications?

00Business Process and Standards, Enterprise Risk Management, GDPR Discovery ReviewTags: , , , , , June, 18

For anyone that’s met me, they’ll know that I’m passionate about the value of certifications and standards. Whether it’s Cyber Essentials, ISO9001, OHSAS18001, Safe Contractor, FORS – all have a value to a business. Some are international standard applicable across any industry, others are industry specific. Some may be a requirement in order to enter a supply chain and will be adopted grudgingly by an organisation. For organisations who just need the ‘certificate on the wall’, there is likelihood that they are not realising the full benefits that adoption of a standard may bring. More info