‘Compliance isn’t security’: 5 keys to a better approach

To reassure themselves and their stakeholders that they are properly responding to cybersecurity threats, many organizations rely on audits that demonstrate they’re adhering to compliance mandates and therefore addressing such risks. Indeed, a study by IDG found that 66% of organizations say spending on security is driven by those rules and regulations. Unfortunately, cyber threats usually outpace regulatory requirements, so compliance alone does not guarantee security.

“No matter how many times security pros say ‘compliance isn’t security,’ there are auditors and regulators who think it is,” Pete Lindstrom, VP of Security Strategies at research firm IDC, was quoted as saying in the IDG report.

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates an award winning software business specialising in risk management. 

Click to view all articles for the EPIC:
Or click to view the full company profile:
Facebook
Twitter
LinkedIn

More articles like this

The Ransomware Challenge: Don’t Pay – Prevent and Protect

Recently, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an updated advisory that warns against paying out ransomware demands and encourages a risk-mitigation approach, in light of dramatic increases in ransomware

Managing CISO risk overload

Need help managing CISO overload? Chief Information Security Officers need help managing an ever-growing array of risks to their enterprises. Cybersecurity has been complicated by a remote workforce and accelerated digital transformation. At the same time,

The Benefits of Quantitative Risk Assessments

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

Navigating cyber risk in a complex, chaotic world

According to a 2020 McKinsey survey, 93% of executives were planning to increase the level of resilience across their supply chain. And as noticed in the recent SolarWinds and Kaseya hacks, vendor risk management plays a

STREAM Solutions Perspective

Read this review of STREAM Integrated Risk Manager conducted by internationally recognized pundit on GRC, Michael Rasmussen. Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on

ATPI case study

The ATPI Group is one of the world’s leading and longestablished global travel management and events businesses. With a footprint of wholly owned offices and network partners in over 100 locations around the world, ATPI boasts

Navigating cyber risk in a complex, chaotic world

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

Customer interview: European Data Hub

European Data Hub is a state-of-the-art data center situated in the heart of Luxembourg. It offers nearly 5,500 m2 of IT space divided into private areas ranging from 20 m2 to 1,000 m2 each. Beyond being