Cydea

29/11/2024

What is FUD, why is it so prevalent in cyber security, and how can you take a more positive approach?

Archie Coomber takes a dive into human nature and how it may be hindering your decision making in the blog post below.

31/10/2024

Only 1/3 of UK businesses have ever conducted a cyber risk assessment 😮

Plus we often hear from IT and Security Teams that struggle to know what makes a *good* risk assessment?

This is despite risk being widely regarded as the foundation for any cyber security programme. It features in government guidance, international standards, and wider good practice.

So we're starting a new series on the Cydea blog looking into just that. Plus tips and tricks on how you can up your game (and maybe sneak in a bit of too 🤑)

Check out the link below to the first part where we touch on preparation and (briefly) identifying risk - then make sure you're following Cydea for future updates!

What makes a good risk assessment? >> https://cydea.com/blog/what-makes-a-good-cyber-risk-assessment/

A risk assessment is widely regarded as the foundation for any cyber security programme. It features in government guidance, international standards, and wider good practice.

29/10/2024

Hop in the Cydea time machine and take a ride with us as we take a look at how could have changed history 🕰️

Penny takes a look at the Travelex and Tesco Bank incidents and how management and testing could have played an important role in preventing and rebounding from those incidents.

Check out her blog post here: https://cydea.com/blog/dora-changing-history-improving-resilience/

Gain an understanding of your DORA compliance by taking our DORA Readiness Quiz. In a few short months, the Digital Operational Resilience Act (DORA) will come into effect for organisations operating in the European financial sector.

10/09/2024

🚀 Cydea has been selected for the Cyber Runway: Scale programme! 🚀

The Cyber Runway programme is funded by the Department for Science, Innovation and Technology and delivered by Plexal Cyber with Deloitte and Queen's University Belfast Centre for Secure Information Technologies (CSIT).

Cyber Runway is the largest cyber accelerator in the UK and the Scale programme is intended to support businesses grow rapidly in the UK and internationally. We'll get support on review/formulating growth plans, introductions and networking with potential partners and customers, engineering support, a range of workshops and mentoring sessions on growing the business, and access to a network of other cyber hubs around the world.

It’s recognition of the pervasive problems with cyber risk management, and the potential for Cydea’s innovative services – which can be delivered via our SaaS platform or as consultancy – to help improve security programmes and on cyber risk.

https://cydea.com/blog/cydea-cyber-ruway-innovative-high-growth-cyber-companies/

If you haven’t already, follow us for more insights, our Cyber Runway experience, and check out https://cydea.com/platform/ and signup to get started for free, or to book some time with one of the team.

06/09/2024

Penny's back with the next in our digital operational resilience series, this time looking at the differences between and .

Complying with a risk-based standard like ISO 27001 gets you a long way there, but there are still areas where you may need to do more.

Check out the Penny's blog post for the key differences between DORA vs ISO 27001, and for a link to Cydea's free DORA Readiness Quiz!

👉 https://cydea.com/blog/dora-differences-vs-iso-27001/

Gain an understanding of your DORA compliance by taking our DORA Readiness Quiz. The EU Digital Operational Resilience Act, commonly known as DORA, will come into force in just a few short months, so organisations within scope will have to be prepared before January 2025.

04/09/2024

Join us at , the UK’s premier event for governance, risk, and compliance, in just over a month!

You'll find Cydea at booth 73 (next to the coffee ☕️) discussing ways to improve cyber risk conversations, and showing off our Risk Platform!

Plus, don't miss Robin Oldham on 10th October in the Risk Theatre at 12:00: "Quantifying Cyber Risk: Tools and Techniques for Better Decision Making"

You can book your free ticket here: https://buytickets.at/grcworldforums/1109182/r/cydea

02/08/2024

"Security teams are struggling to conduct accurate risk assessments and communicate the results with business and technology colleagues. They find simple questions like 'what is our risk?' difficult to answer meaningfully."

Check out this interview with Cydea founder Robin Oldham about why we need to change how we understand

https://betanews.com/2024/07/31/why-we-need-to-change-how-we-understand-cyber-risk-qa/

Cybersecurity is a high priority for organizations, yet often they’re unsure if they’re focusing their effort in the right places, and spending too much or too little on protecting them…

30/07/2024

What is "likely?" 🤔

This is what Exeter thought... ignoring the 0% trolls, "likely" means anywhere between ~30% and ~90% to the 50+ people that voted in our poll.

If you're struggling to communicate your or don't feel like you're being heard, Cydea can help. Turn ambiguous statements into meaningful numbers that can underpin security programmes, investment cases, or show the benefit you're bringing to the business.

https://cydea.com/platform/

24/07/2024

From lecture halls to client calls...

Ridhwaan shares his journey from studying at Leeds Beckett University to a career with Cydea where he's helping to secure critical national infrastructure 💡

https://cydea.com/blog/from-lecture-halls-to-client-calls-getting-started-in-consulting/

Academia to Consulting Transitioning from the academic world to a consulting role in cyber security was a leap into the unknown.

22/07/2024

*️⃣ UPDATED: If your boss is asking "what does it mean?" about Friday's incident, or you need to circulate a briefing to your peers, you'll hopefully find a useful summary and some broader considerations in our risk advisory:

https://cydea.com/blog/advisory-crowdstrike-blue-screen/

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.

19/07/2024

There's lots going on today... Here's what we know about the outages causing so much disruption to businesses:

There appear to be two separate incidents:

- A configuration error at Microsoft that caused an outage in part of their Microsoft 365 platform (email, teams, sharepoint, etc)
- A dodgy update from CrowdStrike that causes Windows hosts to blue screen

More in our risk advisory here: https://cydea.com/blog/advisory-crowdstrike-blue-screen/

We've broken down the risk into the sources, events and consequences that you may want to consider for your own risk assessments.

Cydea’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organisations.