What a difference a month makes! Just last month we were reviewing recent news such as the Kaseya hack unaware that this month we’d be back in a level 4 lockdown. Fortunately, we are all pretty well set up to handle working from home this time around (while our thoughts go out to those industries not so fortunate to be able to transfer to the home office so easily). Our latest newsletter is now out and as you’d expect, in this edition we touch on some of the “cyber-safe” working from home tips we have shared in the past along with our new “Staff Spotlight” section and the usual round-up of recent cybersecurity news that caught our eye. Check out all the details in our latest newsletter.
The Blog
July 2021 Newsletter – Axenic Cybersecurity Commentary
Hot off the virtual press is our latest monthly cybersecurity update. Our popular round-up of some of the cybersecurity-related events over the past month that caught our eye. This edition includes our thoughts on the recent Kaseya hack, an emerging job sector for Ransomware-as-a-Service (RaaS) Negotiators and what not to post in online forums when you have access to classified information. Read up on all this and more in the latest newsletter here.
Highlights from the Privacy Forum 2021
New Zealand Privacy Week 2021 was held recently; 10 – 14 May. This annual event is designed to help promote privacy awareness and to help inform people of their rights under the Privacy Act. A key event of the week was the Privacy Forum that was held here in Wellington on Friday 14 May. If you were unable to attend, the good news is that Axenic were there and the following blog is a review of some of the key insights from the event courtesy of Axenic Principal Consultant Lisa Zannino.
ISO Blog Series Part 4: Road to ISO27001 – Document, Document and More Documenting
If you have been reading our blog series you will be following our journey to becoming ISO 27001 certified, which we achieved in February this year! In Part 3 we discussed how we utilised lockdown to get our advantage with some extra time on our hands. At that stage in our ISO journey, our ISMS was running with a high level of governance, however, it was not yet ready to get us ISO certified. There were still some pieces we needed to complete to get us over the line to achieve ISO 27001 certification. Let’s take a close look at the next stage we took on our journey to become ISO certified – one which involved a fair bit of documenting!
Privacy is Precious
Recently I had an unpleasant privacy experience. I went to buy a concert ticket for my mother online and as part of the checkout process I was required to provide my date of birth and my gender! I was baffled and annoyed. What possible good reason could they have for this? It wasn’t an age-restricted gig and in any case, they didn’t ask for my mother’s date of birth but mine! I can think of plenty of bad reasons:
ISO Blog Series Part 3: Road to ISO 27001 – Lockdown, a lucky break!
If you have been following our ISO 27001 blog series you will know that Axenic is now officially ISO 27001 certified! The team is extremely excited about this accomplishment, however, the journey to becoming certified has not been easy. We are going to continue talking you through our journey to certification and Part 3 discusses our lockdown experiences and how we used this to our advantage.