The SECOND Advisories Limited – Page 5 – Your Trusted Cybersecurity Advisor

Cybersecurity is neither product nor solution.

It is a never-ending journey with ongoing challenges to reach the rolling target of stakeholders expectation.

Automation is everywhere, be seen or behind the scene.

Cybersecurity becomes everyone's concern and therefore everyone's responsibility.

Critical Infrastructure Failure Has High Impact.

They must be secured to maintain reliable services.

Systems are no longer deployed as islands.

They are connected and accessible anywhere, anytime, any network, any device and any platform.

And so are people getting connected.

... mostly in the cyber world, even when face-to-face.

Cloud, Social Network, IM, AI are dominating.

Demarcation of biz and non-biz use, trusted and untrusted app are diminishing.

We are living in real and cyber space.

... always exposing to threats and must follow the same risk-taking principles for cost-effective and optimal protection.

Hackers are all around.

Be vigilant and smart to avoid being victim.

Collect latest cyber threat intelligence.

But assess material impacts to specific business environment by competent cybersecurity practitioners to avoid FUD.

Prepare for the worst.

React promptly to resume services to maintain survivability.

Streamlined IR is the bottom line.

Because we don't know what threats we don't know.

Engage all levels.

Ask what you can do for cybersecurity.

Be part of the transformation.

Each of us plays a different roles to protect the cyber community.

Cybersecurity is needed for all entity size.

... as mutual protection for individual and connected neighbor.

Act now and don't wait.

Are you ready for this journey and explore with us?

Services

Provide vendor neutral cybersecurity advisories to enhance the organization cybersecurity posture Act as a trusted...

Gallery

Slipping away for a break from cybersecurity conference / event (alphabetic order). Non-Cyber – Travel

About

Founded in 2016 ... Subject Matter Expert of cybersecurity in ICT (Information and Communications Technology) and ICS (...

Full Coverage

This time, I talk about auditor instead of cybersecurity practitioner that I have come across. In an ICS audit, auditor

Let me drop everything ...

Politics are always incurred in work and culture of an organizations especially large one. Cybersecurity becomes a hot topic and

Perimeter

When you move the contents to the cloud, it is above the perimeter. Even if you are pretty sure you

Administrative Control

Certain cybersecurity practitioners insist to impose technical controls to secure the infrastructure/system. To some degrees yes, basic technical controls will

Dual Standards

It is no harm to have dual standard to fit specific use case. As long as the directive is clearly

Competency

Recently I gave a talk to a local university students about cyber survivability. At the end of the session, it's

Seasonal Factor

There are network anomaly detection technologies to alert abnormal network traffic of potential cyberattack. The pre-requisite is let the technology

Enforcement #4

Cybersecurity policy establishment and cybersecurity policy enforcement are usually executed independently in an organization. Normally, policy authors are more knowledgeable

Opportunist

Policy statement must be clearly defined and published. It must also be precise without ambiguity but subject to interpretation by

Spare Capacity

Availability is one of the protection objectives in cybersecurity. When deploying new systems, the design must cater for spare capacity.

Surrealism

It is easy to for artists to draw something or writers compose fictions beyond imagination. Such creation even stimulates innovation

Purpose of control

When we deploy control, we always have to understand what we are trying to achieve. In the illustration, if the

« Previous 1 … 3 4 5 6 7 … 21 Next »