Most companies say security awareness training is vital. Posters on the walls, quizzes in inboxes, a once-a-year phishing drill. Yet breaches still start with one careless click. If training really worked as promised, why do the same incidents keep happening? It is easy to blame Bob in Accounts for clicking a link he should have […]
Read MoreAnyone who has sat through security awareness training knows the standard slide: a suspicious email, a too-good-to-be-true link, and a reminder not to click. All fair enough, yet phishing and business email compromise still cost organisations billions every year. The truth is, the criminals behind these attacks don’t fire off random spam. They plan, they […]
Read MoreDIONE VELLA, Chief Service Excellence & Compliance Officer at BMIT, talks governance and why it is so much more than a box-ticking exercise. Let’s talk about governance. It’s not always the most exciting topic, but it’s absolutely vital for any business, wouldn’t you agree? Absolutely, and I get it. Governance doesn’t exactly spark excitement at […]
Read MoreCyber resilience today is less about stopping every threat and more about surviving them. Networks will be probed, systems will fail, but what matters is whether your business keeps going when they do Most organisations have long focused on prevention. That still matters. But cyber resilience, the ability to respond to incidents and recover quickly, […]
Read MoreEvery business relies on technology, but how often do we stop to check if it’s as secure as we think? Making assumptions on how secure our networks are is a dangerous and costly game to play! A cybersecurity risk assessment isn’t about ticking boxes or indulging in worst-case scenarios (though the latter exercise could prove […]
Read MoreAs a business owner or CEO, you know cybersecurity is a critical issue - every headline reminds you of the risks - but justifying hiring a full-time Chief Information Security Officer (CISO) on a tight budget feels out of reach. Maybe it’s the cost, or maybe you’re unsure if your organisation even needs someone in […]
Read MoreIt was a packed room at BMIT’s The Cybersecurity Imperative 2025 event, which brought together security professionals, business leaders, and technologists for a morning of practical insights and honest reflection. Now in its third year, this edition tackled a question that seems straightforward but remains challenging: what does ‘secure enough’ really mean? The keynote from […]
Read MoreThe recent breach at Marks & Spencer didn’t stem from a technical failure. It began with a phone call. Attackers impersonated internal engineers and convinced help desk staff to reset passwords and disable multi-factor authentication. That gave them the foothold they needed to access domain credentials, escalate privileges, and ultimately deploy ransomware. Stores reverted to […]
Read MorePackages are more than just a collection of services Do you think cybersecurity is just an IT issue? It’s not. It’s a business issue and one that could have a lasting impact on the company’s future. Security is often considered (and treated) as a collection of tools rather than a strategic advantage that builds customer […]
Read MoreCyrille Aubergier, Senior Compliance (GRC) Specialist at BMIT talks about making a success of security awareness training and to be wary of the pitfalls. Security awareness training is gaining a lot of traction in organisations, yet we continue to see incidents stemming from basic errors. What do you think is the biggest reason for this […]
Read More