Management

Risk management, NIST CSF 2.0, ISO 27001, UK GDPR and the Computer Misuse Act: the rules of the game.

1. 01Risk managementHow organisations identify, assess and treat risk: the vocabulary, the methods, and the business continuity terms behind every security decision.~4 min read
2. 02Frameworks and standardsNIST CSF 2.0, ISO/IEC 27001 and the reference frameworks that structure how organisations do security.~4 min read
3. 03Law, ethics and privacyThe Computer Misuse Act, UK GDPR and data protection, and the ethics of authorisation that separate security work from crime.~5 min read