Posts

Cloud Security: Standards and Definitions

Security standards and definitions frequently referenced in our Cloud Security Guidance. Standard Guidance…

Read more
/by

Using IPsec to protect data

This guide will help you deploy or buy network encryption, using IPsec. It provides recommendations for the…

Read more
/by

Security operations centre (SOC) buyers guide

This guidance is for organisations that are considering procuring a Security Operations Centre (SOC) from…

Read more
/by

Vulnerability management

All modern software contains vulnerabilities; either software defects that require patches to remedy, or…

Read more
/by

End User Devices: Advice for End Users

This advice will need to be tailored to the particular device(s) being used,…

Read more
/by

End User Devices: Security Principles

The EUD Security Framework describes twelve principles for securing devices, all of which must be…

Read more
/by

Security governance, enabling sensible risk management decisions & communication

Security governance and business objectives Standard approaches to security and risk management are…

Read more
/by

Secure sanitisation of storage media

This guidance is suitable for any organisation wishing to ensure that their data held…

Read more
/by

Approaching enterprise technology with cyber security in mind

The majority of cyber attacks an organisation faces will be ineffective if enterprise…

Read more
/by

End User Devices: Authentication Policy

There are three important parts to authentication that you should consider: User to…

Read more
/by