The Blog

News & Thoughts from the Axenic Team

Whitelists & Blackhats

By Admin, on 13 February, 2013

The news yesterday and Monday was all about Telecom’s Xtra service and Yahoo. The media were outraged on behalf of everyone and a number of commentators took to the airwaves to tell us just how bad this was.

So What…?

By Admin, on 8 February, 2013

We do a lot of risk assessments… a lot…. As a result, we spend a lot of time talking about risk, how it is measured and most importantly what it delivers for an organisation. We also do a lot of reading.

A Tale Of Two Incidents

By Admin, on 20 December, 2012

Unless you spent the latter half of this year in a cave, you will be aware that both ACC and the Ministry of Social Development suffered security and privacy incidents.

There is only one way to eliminate risk

By Chris, on 26 October, 2010

One common misconception of risk management that I have come up against time and time again is that by managing a risk it has been eliminated and can be closed and removed from the risk register. This is simply not the case as risks can evolve and change over time for any number of reasons.

Risk definitions

By Jim, on 26 October, 2010

One of the problems that security practitioners have when discussing risk is agreeing on the terminology. My work in recent years has focussed on using widely accepted standards to underpin security recommendations.