Your email is going into a black hole

Something is broken in the land of email Everyone relies on email, and organisations probably even more than individuals. Marketing and Communications teams in particular are hugely reliant on email to reach their audience. But …

Read more

Humans are the weakest link

This is the trope which just won’t die. Despite some great work from people like EmmaW and the Socio-Technical Group at the NCSC, the ISACA and Angela Sasse’s team at UCL, the list of vendors …

Read more

A park with a winding path which everyone has shortcut leaving a 'desire path' (HT Robert MacFarlane)

Designing security for people

The challenge Cyber security is always a careful balancing act between usability and security, and there are consequences to allowing the seesaw to swing too far one way or the other. Developing people focused cyber …

Read more

A view over a lake with people in the foreground

A new job

I’ve not blogged for over a year, because in that year we moved into our much anticipated new home and four months later I started a new job, so I’ve been a bit busy. The …

Read more

Confused child

Cyber what now?

As an industry we’re not particularly good at talking to people about cyber security in a way which is helpful for them, rather than in a way that either triggers a visceral reaction, a sale …

Read more

Information Security Policies for people

Often driven more by regulation and legislation than by any real desire to change behaviour, information security policies are seen by author and reader alike as a tick box exercise. Organisations either forget or don’t …

Read more

A new home

Back in 2019 we made a family decision to move from Cambridgeshire to the South West of England. We were drawn to the beaches and the moors, but particularly to Totnes in South Devon because …

Read more

Piles of books in a garage

Data Accumulation Prevention

We’ve got it all wrong Over the past few weeks I’ve spent quite a bit of time on Data Loss Prevention (DLP) in Microsoft 365, improving our DLP policies to stop specific data types from …

Read more

Cyber security is a seatbelt

One of the things which still annoys me after 20+ years in IT is when I hear an organisation wanted to do something, but the outcome was “security says no“. This behaviour causes business and …

Read more