PC PORTAL

Experienced. Trusted. Solutions.

BH Consulting News

By

Plan for potential incidents and breach scenarios, cybersecurity conference hears

Businesses should prepare an incident plan for security breaches in advance to know what resources they’ll need to deal with it. Speaking at the Technology Ireland ICT Skillnet Cybercrime Conference earlier today, Brian Honan said that running different scenarios can help businesses identify whether they’ll need assistance from IT, legal, HR or public relations.

Research from the Institute of Directors in Ireland has found that 69 per cent of SMBs claim they’re prepared for a data breach. Brian flipped that statistic to point out that this means almost one third of business owners have no such plan.

Never mind cyber; it’s crime

He also encouraged companies to report incidents like ransomware, CEO fraud or a website infection. “Don’t forget you’re the victim of a crime. In most cases, a cybersecurity incident is treated as an IT problem, not even a business issue or a crime. It’s a mindset change. It’s not separate to your business, it’s integral to it.” To help make that change, he suggested: “we should drop the name ‘cyber’.”

When businesses have to disclose an incident, Brian called on them not to use the phrase ‘we suffered a sophisticated breach’ – because most times, it’s not true. In many cases, incidents are due human error, or to bad practices like poor passwords. “If you’re using cloud email, enable two-factor authentication and educate people in using secure passwords. Encourage them not to click on suspicious links,” he said.

Other attacks exploit platforms like WordPress and Joomla. Businesses using those tools to run their websites need to continuously manage and update them, Brian said. “Many web vulnerabilities and threats like attack types like SQL injection are known about for over 10 years,” he said.

Steps to better security

Companies can take several steps to improve their security, such as establishing policies. “They’re very important – they set the strategy for the business and help everybody to meet it,” said Brian. Having systems to monitor and respond to suspicious activity is also essential. “Look at the physical world: you can’t guarantee your business won’t be burgled. It’s the same in online world, but we need to be able to detect when it happens,” he said.

The best security investment a business can make is in awareness training for employees, Brian added. These programmes educate staff about how to identify potential attacks, and how to handle information in a secure way.

He also encouraged businesses to disclose when they have suffered an incident, to help improve overall security. “Everybody will have a breach, there’s no shame in that, so let’s get over that and share information to help each other,” he said.

Tackling the cybersecurity skills gap

Research shows a high proportion of security breaches take months to recover from, which is partly due to an industry skills shortage. “The biggest problem we have is a lack of skilled staff in cybersecurity,” Brian said. The conference saw the launch of a new programme to train 5,000 people in cybersecurity over the next three years. The Cybersecurity Skills Initiative aims to address the shortage in skilled security personnel.

It’s worth asking whether the industry is open to candidates without formal degrees in cybersecurity or computer science. Brian said some companies may need to relax restrictive HR policies such as requiring formal degrees in security or computer science to attract the right people into security roles. Otherwise, they could be missing out on enthusiastic, experienced and skilled people.

 

 

The post Plan for potential incidents and breach scenarios, cybersecurity conference hears appeared first on BH Consulting.

By

BH Consulting marks EU Cyber Security Month with daily tips on staying secure

October is EU Cyber Security Month and to mark the occasion, BH Consulting will be sharing advice about digital security and privacy. Every working day during October, we’ll post useful information on our Twitter feed and on our LinkedIn page.

These short tips will draw attention to common security risks and threats that many of us face. We’ll be using various hashtags as appropriate, including #CyberSecMonth, #Cybersecuritymonth2018 #cyberaware, #cyberhygiene and #saferinternet4EU. (We also recommend you visit the official website for the EU-wide awareness campaign, at www.cybersecuritymonth.eu.)

Staying secure at work and in the home

The themes we plan to cover include staying secure in the workplace by preventing CEO fraud, ransomware, phishing and spam. As the month goes on, we’ll also give advice you can pass on to family members about protecting personal information and using digital technology securely.

Many of our posts will link to blogs we have written or to other open source security awareness material. At the end of each week, we’ll round up those tips into a post which we’ll publish here on our blog. This will be a ‘living’ post about EU Cyber Security Month that we’ll keep adding to as each week passes during October.

Please like and share widely to help us spread the word and improve security awareness for everyone. And a quick reminder: we also publish a monthly newsletter for information security professionals and people working in related roles. You can sign up for the newsletter

The post BH Consulting marks EU Cyber Security Month with daily tips on staying secure appeared first on BH Consulting.

By

Now hiring: sales and marketing assistant at BH Consulting

We are looking for a motivated individual to join our team and help us grow our business. The sales and marketing assistant will serve as a point of contact for customers with queries about our services, and will provide support to our team. The ideal candidate would be goal oriented and have a deep understanding of customer service best practices.

This is an excellent opportunity to develop a career in sales and/or marketing. This role also includes a guaranteed annual personal development plan and budget.

BH Consulting is one of Ireland’s leading cybersecurity consultancies. We are an award-winning independent consulting company providing specialist advice in information security, GDPR, cybersecurity, risk, cloud forensics, and training.

Purpose of the role

  • Assist in all the administrative aspects of sales and marketing operations
  • Provide quality customer service and deal with inbound queries and outbound sales
  • Assist in the design and execution of marketing campaigns and lead generation activities as directed by the sales and marketing manager

Responsibilities

  • Assisting the sales and marketing manager in all administrative aspects of the sales operations including answering incoming calls, responding to customer enquiries, qualifying leads, writing sales proposals and all follow-up correspondence
  • Developing marketing collateral, marketing campaigns and event management/conference setup
  • Managing the company’s CRM system
  • Providing administrative support and other ad hoc duties
  • Helping in sales and generation of new business opportunities
  • Helping in the production of weekly and monthly sales and marketing reports
  • Conducting market research on an ongoing basis

Core competencies

  • Excellent presentation, telephone manner and communication skills are essential
  • Customer service oriented
  • Highly proficient in Microsoft Office with expertise in Word, PowerPoint, Outlook and Excel
  • Excellent organisational and multitasking skills
  • Passion and drive – willingness to go that extra mile to achieve a target or objective
  • Flexible and adaptable
  • A team player with a high level of dedication

Education and experience requirements

A third-level qualification in business, sales, marketing or other relevant degrees would be an advantage. Applicants should ideally have one to two years of experience in sales, retail and/or office administration. Previous telephone sales experience would be an asset, and a demonstrable interest in sales and in cybersecurity would also be an advantage.

Please send CVs by email to [email protected].

 

The post Now hiring: sales and marketing assistant at BH Consulting appeared first on BH Consulting.

By

Upcoming cybersecurity events featuring BH Consulting

Here is a summary of upcoming cybersecurity events, conferences, webinars and training programmes where BH Consulting staff will deliver presentations about issues relating to cybersecurity, data protection, GDPR, and privacy. Each listing includes links for more information and registration.

Irish Information Security Forum: Dublin, 15 November

Our COO Valerie Lyons will be speaking at the Irish Information Security Forum’s November chapter meeting. Her talk covers her research as a PhD scholar in DCU over the last two and a half years, having recently won a prestigious Irish Research Council scholarship for her research. Valerie will give an overview of privacy and trust as interrelated constructs. The meeting will take place at Buswells Hotel in Dublin 2 on Thursday November 15th, starting at 4pm. More information and a link to reserve a place are here.

ISACA Ireland Chapter Conference: Dublin, 16 November

Valerie Lyons will deliver the closing presentation at the ISACA Ireland Chapter Conference 2018. Her talk is titled: “GRC2.0 – Corporate Social Privacy”. The day-long conference for information systems professionals will take place on Friday 16 November at Croke Park in Dublin. The theme for this year’s event is Governance Risk and Compliance – The Good, The Bad and The Ugly. The conference will feature three streams: audit and compliance; management; security and technical. Booking forms and the speaker agenda are at this link.

IRISSCON: Dublin, 22 November

The tenth annual IRISSCERT Cyber Crime Conference has one of its strongest lineups yet. Confirmed speakers include Wendy Nather, Dave Lewis, Andrew Hay, Jack Daniel, Javvad Malik, Martijn Grooten, Quentyn Taylor, Robert McArdle and Eoin Keary. IRISSCON will take place at the Ballsbridge Hotel on Thursday 22 November, running all day. Staff from BH Consulting will be there on the day. Check the conference website for more updates. Tickets cost just €50 and you can book via this link.

SANS European Security Awareness Summit: London, 28-29 November

Brian Honan will be the keynote speaker at this year’s SANS European Security Awareness Summit, which takes place in London. Brian will open the two-day event, which will feature various organisations’ security training videos, sharing of awareness materials and discussion of their effectiveness, along with interactive workshops for building elements of an awareness programme. To access the detailed event agenda and register to attend, visit this page.

The post Upcoming cybersecurity events featuring BH Consulting appeared first on BH Consulting.