Tag Archives: InfoSec

Risks, controls & incident handling, and why they matter

I hosted a longish lecture & discussion this morning with a small but select mix of MBA students from Providence College School of Business and Edinburgh Napier computing students. They had been working on a project to visualise some security … Continue reading

Posted in Audit, Security | Tagged , , , | Leave a comment

What can TOE say about information security?

In which I continue to argue that information security should be explicitly mapped to all levels of the T-O-E technology adoption model. Continue reading

Posted in Methodologies, research, Security | Tagged , , , , | Leave a comment

Cloud Security Alliance EMEA preconference seminar

The Cloud Security Alliance held its 2013 Congress here in Edinburgh – and I had the privilege of attending the pre-conference symposium on 24 September which focussed on the specific risks that exist within the public and private sectors in the UK. … Continue reading

Posted in Audit, Daily Links, Europe, Security, UK | Tagged , , , , | 2 Comments