URM

InfoSec Insider Podcast - Episode 18 Mitigating Cyber Risks In this episode of InfoSec Insider – Talk Cyber, George Ryan, Consultant at URM, breaks down the current state of cyber security in the modern business landscape and the common cyber security failings and challenges he sees organisations face, as well as offering key advice and guidance on what organisations can do to protect against these threats. George leverages his extensive experience assisting organisations to enhance their cyber security to discuss: ·      The current cyber security landscape and the common security pitfalls that are leading to an upward trend in cyber security incidents ·      How the cyber security landscape is likely to evolve in the future as a result of ongoing technological developments, such as in the field of artificial intelligence (AI) ·      How organisations can protect themselves against these threats and the benefits of certifying to the Cyber Essentials scheme to do so. Listen to the episode: Podbean: https://lnkd.in/evgCUT9f Apple Podcasts: https://lnkd.in/eASAJk59 Spotify: https://lnkd.in/e2TF_UDV YT: https://lnkd.in/eFhTXR4x URM website: https://lnkd.in/eyFQ3T-X #podcast #informationsecurity #cybersecurity #cybersec #cyberessentials #CE #CECertification #CyberEssentialsPlus #CE+ #CyberRisk

InfoSec Insider Podcast - Episode 17 Mistakes to Avoid When Implementing & Maintaining an ISO 27001 ISMS In this episode of InfoSec Insider, Wayne Armstrong, Senior Consultant at URM, breaks down the common mistakes and challenges organisations come up against on both sides of their certification assessment, i.e., before the external assessment when the Information Security Management System (ISMS) is first being implemented, and after certification has been achieved and the ISMS is being maintained. Wayne leverages his 30+ years of experience in information security and risk management to discuss: ·      The mistakes he frequently sees organisations make when implementing ISO 27001 and preparing to certify ·      The common mistakes organisations make in maintaining their ISMS and ISO 27001 certification ·      New common pitfalls he has seen regarding organisations’ implementation of the 2022 version of the Standard ·      Challenges and mistakes that organisations from particular industries and sectors should look out for. Listen to the episode: Podbean: https://lnkd.in/eKNgRBgT Apple Podcasts: https://lnkd.in/eHUgA3WU Spotify: https://lnkd.in/ePxDGs5s YT: https://lnkd.in/eGqQMBmZ URM website: https://lnkd.in/eyFQ3T-X #podcast #informationsecurity #infosec #ISO27001 #ISO27001Implementation #ISMS #ISO27001Certification #InformationSecurityManagementSystem

InfoSec Insider Podcast. Episode 16 Who Needs a ROPA and Why? In this episode of InfoSec Insider – Talk DP, Stuart Skelly, a Senior GRC Consultant at URM, explains records of processing activities (ROPAs), a key document that almost every organisation must create and maintain in order to comply with the General Data Protection Regulation (GDPR). Stuart leverages his 25+ years of specialisation in data protection law to discuss: • What a ROPA is, which organisations need to have one  • The advantages of having a ROPA in place and how this can benefit your GDPR compliance efforts  • Who within an organisation needs to create the ROPA • The challenges associated with producing a ROPA and how these can be overcome • Whether you should first produce a data flow map before embarking on the ROPA • The next steps after the ROPA has been built. Listen to the episode: Apple Podcasts: https://lnkd.in/egNQJPbX Spotify: https://lnkd.in/eR2w3f-M YT: https://lnkd.in/ewv8DmcF URM website: https://lnkd.in/eyFQ3T-X #DP #DataProtection #GDPR #ROPA #RecordsOfProcessingActivities #Compliance #DataProtectionLaw #DataProcessing #ICO #DataMinimisation #DTIA

InfoSec Insider Podcast. Episode 15 ISO 42001 and AI Perspectives In this episode of InfoSec Insider, Neil Jones, Senior Consultant at URM, breaks down the purpose and structure of the recently released ISO 42001, the International Standard for Artificial Intelligence Management Systems (AIMS), as well as explaining the Standard’s use of AI ‘perspectives’. Neil leverages his 20+ years’ working with a range of risk and information security-related standards to discuss:   - What ISO 42001 is intended for, and what it is not  - How ISO 42001 is structured, and how it compares to other standards written in the ‘Harmonised Structure’  - What an AIMS is  - How you can establish the ‘trustworthiness’ of an AI system and how this concept is articulated through ‘AI perspectives’ in ISO 42001. Listen to the episode: Apple Podcasts: https://lnkd.in/eWpnRV5E   Spotify: https://lnkd.in/eWpnRV5E   YT:  https://lnkd.in/eXZCqSQD   URM webiste: https://lnkd.in/eyFQ3T-X #AI #ISO42001 #AIMS #ArtificialIntelligenceManagementSystems #HarmonisedStructure #Trustworthiness #ArtificialIntelligence #AIperspectives #Security #InformationSecurity #InfoSec