Gary Hibberd FCIIS

I’ve experienced this first-hand: reporting is one of the most overlooked, yet critical, parts of incident response. Even the strongest technical response can be undermined by confusion, miscommunication, or regulatory fallout if reporting isn’t done right. It’s part of why I started CipherNorth LLC, to help organizations build repeatable, defensible reporting processes that keep leadership aligned, build trust, and turn compliance into a strategic advantage. I'm curious how others are approaching this. Do you have defined cadences and playbooks for reporting, or is it still something handled ad hoc in the middle of an incident? #CyberSecurity #IncidentResponse #CISO #RiskManagement #CyberRisk #ITSecurity #DataProtection #ExecutiveLeadership #BusinessContinuity #Compliance #CyberResilience #SecurityLeadership

4

The UK is redefining its cybersecurity framework with the introduction of the Cyber Security & Resilience Bill (CSRB), also known as the UK Cyber Resilience Act. This represents the most significant change since the NIS Regulations of 2018 and may have broader implications than GDPR. Key points include: ⚙️ Expands the scope to include Managed Service Providers (MSPs), data centres, and critical suppliers 🔒 Strengthens regulator powers and incident-reporting obligations 🧩 Aligns with NIS2 but is tailored for UK needs 🏛️ Connects cybersecurity directly to national resilience This raises the question: Is this a bold move for the UK, or an effort to maintain compliance with Brussels through quiet adherence? UK cyber rules are transitioning from static to agile, with delegated powers allowing for rapid sector additions. A summary is attached for further insights. Subscribe to the newsletter for tomorrow's detailed report to stay informed. #CyberResilience #CyberSecurity #UKPolicy #RiskManagement #NIS2 #BoardGovernance #DigitalResilience #EU #EURegulations #CRA #Resilience

1

A good problem to have: Our data has an extremely broad array of possible use cases. It's a common refrain that focus is everything, so we spend a lot of time trying to be pointed with our GTM strategy at Fable; boiling down the many ways you can use our data into a simple narrative. But then projects like this one with the Cyber Monitoring Centre come along, and it's clear that we should embrace the versatility rather than wrestle with it. We started with a mission to harness our Data for Good; shining light on the the world we live in to ensure decision makers are making great decisions rooted in reality. This is a great example of that mission in action, and on such a critical, timely topic.

18

1 Comment

Proud to be a Cyber Advisor through the rigorous assessment process developed by The Cyber Scheme in collaboration with IASME and aligned with the standards set by the NCSC. With a pass rate of just 50%, this isn’t just about knowing cybersecurity — it’s about being able to communicate it clearly and effectively to business owners without the jargon. The NCSC is setting thestandard — and we’re proud to be part of that. At IQ in IT, we’re helping organisations become Cyber Essentials compliant with tailored cyber advisory — including our bundle offer, which includes certification plus 5 hours of expert guidance to help businesses get it right the first time. 👉 https://lnkd.in/emtp6www Cybersecurity is a business priority. Let’s make it accessible, actionable, and effective. #CyberAdvisor #NCSC #CyberEssentials #TheCyberScheme #IASME #IQinIT #CyberResilience #MSPCommunity #CyberSecurity #DigitalRisk #BusinessContinuity #CyberForBusiness

6

How would you contact your staff? Where is your disaster recovery plan stored? Could you manage any necessary PR? The majority of businesses store all of this vital information on their systems, which is all well and good unless you have experienced a cyber attack and are unable to access it. The Wales Cyber Innovation Hub can guide your team through an incident response training module, providing insight into the key considerations you need to address. This is just one of many hands-on training modules available, from fundamentals of cybersecurity hygiene to cyber resilience for Senior Leaders and Directors. It's about managing risk. I do not doubt that any of my network who have a business with staff, religiously test their fire alarm every week. You have likely invested significantly more than the cost of our cyber resilience training in fire extinguishers, monitoring systems, and other fire prevention measures. Yet, new research from insurance provider Aviva found that businesses are 67% more likely to experience a cyber incident than a physical theft and almost five times as likely to have an attack as a fire.* *source: Infosecurity Magazine. In today's world, the Cyber resilience of your business needs to be considered in the same way you look at other business risks. I urge you to take steps to protect your organisation. To learn what you don't know, you don't know. If your business has a Welsh presence, you could get up to fifty percent of your training costs back via the Welsh Government's Flexible Skills program.** However, you need to move quickly, as the scheme is only available for training received by March 2026. Please don't put it off any longer. Get in touch with me, Andy Dodge, or visit the link in the comments. **Eligibility criteria would need to be met.

6

1 Comment

UK cybersecurity professionals are reporting higher stress and burnout levels than their global peers.* A new report from Bitsight links this to increasingly complex regulations (like NIS2 and DORA), poor communication from leadership, and a lack of alignment between security teams and wider business objectives. If this continues, it’s not just a resourcing issue for your business. It’s a significant risk. From what I’m hearing in the market, many cyber professionals aren’t overwhelmed by the technical workload, they’re frustrated by the lack of internal support, unclear priorities, and being left out of strategic conversations. They're looking for environments where they can be heard, backed, and enabled to do their jobs *Source: Bitsight, August 2025

2

1 Comment

🚨 9 Alarming Cybersecurity Gaps We’ve Found in the Last 12 Months of Delivering Risk Assessments... After carrying out a year’s worth of cybersecurity risk assessments across UK businesses, the findings are eye-opening. If you think your IT systems are “secure enough,” this may make you think again 👇 Here’s what we discovered most often: 🔓 Often physical security is as lapse as the technical security - server rooms unlocked/left open, laptops left unattended, no access control on external or internal doors. 💸 Business function process around security checks such as paying invoices/changing bank details lacking or non-existent. 🛑 Most businesses had experienced historical breaches leading to considerable downtime and cost - often this is what has prompted the risk assessment. 🔥 The Firewall is the most neglected device - ports (doors) left open, default credentials not changed, device firmware not updated...each one making it simple to breach. 🔑 Password complexity and device lockout policies missing, coupled with MFA disabled across a wide range of Saas product logins. 🖥️ Many businesses don’t have an asset inventory - often devices are discovered that are not known to have existed and devices are discovered which are not protected. 💾 In 80% of cases data backups were either not working or have never been tested. 📄 In 100% of cases there was no clear Incident Response Plan, Business Continuity Plan or Disaster Recovery Plan - businesses felt that they don’t have the skills or time and resources to create them themselves. 💰 In many cases there was no clearly defined technology or cybersecurity roadmap and/or budget - Ad-hoc changes and 'last minute' purchases were the norm. ✅ With those points in mind, in 'EVERY' case we assisted the business in identifying and reducing risk, and setting a clear plan and objectives for the future development of their IT systems and cybersecurity defences. If you don’t yet have a risk assessment, tested backups, or a cybersecurity roadmap, you are leaving your business open to unnecessary risk. 💡 Next step: Connect with me here or message Dufeu IT to arrange your Cybersecurity Risk Assessment. Don’t wait until a breach forces you into action. Dufeu IT #CyberSecurity #RiskAssessment #BusinessContinuity #CyberEssentials #CyberSecurityAwarenessMonth

7

2 Comments

GRC is not about control for control’s sake. If it doesn’t protect business value, it becomes bureaucracy. Governance must enable growth. #UKCyberSecurity #GRC #CyberGovernance #RiskManagement #DigitalResilience #SecurityLeadership #ComplianceUK #rexcyberspace

5

Although there are common controls between SOC 2 and ISO 27001 it really is a different world. More firms in UK and Europe are needing SOC 2 and we're here to help.

5

A bold shift is coming. The FCA and ICO are preparing to tell FS firms something many of us have known all along: ➡️ GDPR isn’t a barrier to preventing foreseeable harm Their joint statement, expected in March, is also expected to encourage firms to share vulnerability data. This will reshape risk registers, assurance activity and customer journeys. Share your thoughts below on the challenges and impacts this will have for firms. 👉 Want help getting ahead of it? Join Sytner, Barclays, OSB and others at our next East Midlands Vulnerable Customer Walk & Talk – Friday 6th March, 9:45 am – Sawley Marina, near M1 J24a. Business leaders only, no solution providers. 👉 Schedule some time to talk using the "Book an appointment" button above.

90

5 Comments

The BPS Cyberpsychology Conference for 2025 has officially come to a close! It was wonderful meeting new friends and immersing myself in cutting-edge cyberpsychology research in Birmingham, UK. The few days were packed with an incredible array of topics, far more than I could absorb in the two days. There are many I am inspired and intrigued by, so here is only a small list of highlights that come to mind presently: - I was fascinated by Glyn Matthew Pickering’s work on the ‘AI Mind Palace,’ a virtual environment he designed to reduce test anxiety and bolster assessment readiness. The integration of VR, AI, and mnemonic strategies like the Method of Loci seems promising in boosting student confidence and performance. Makes me wonder if cybersecurity education should benefit from something similar. - Leonardo Rabelo’s exploration of technobiological bodies in clinical practice offered a provocative lens into how cybernetic integration is reshaping psychological frameworks. His psychoanalytic take on hybrid identities suggested new clinical paradigms for engaging with technologically-augmented selves. This is one of the more innovative concepts presented. - Charlotte C.'s study on Gen Z’s attitudes about AI touched on an optimistic stance, where AI is largely embraced as a tool for self-expression. The next generation who will be largely more responsible for handling AI in the future. It was a reminder of the need for ethical frameworks alongside technological development. - Dr Chris Fullwood and Dr Vasilena Stefanova examined an anti-AI forum populated by creative professionals. Their content analysis revealed anxieties over authenticity, artistic integrity, and the threat of creative erosion. Insights that feel urgent in today’s rapidly evolving AI landscape and related perceptions. - Lynne Beveridge presented work on Messenger Pigeon, an AI study assistant supporting disabled and neurodivergent students. This shows not only technical promise but a thoughtful support to equitable learning experiences. As I look to how AI can be used in education and work productivity, it is interesting to see research on how this can be a benefit. The conference offered valuable insights that closely aligned with my Q-methodology study on cybersecurity practitioners, particularly regarding psychological traits, user acceptance of AI, and the subjective dimensions of hacking, ethics, and identity. Also, being able to discuss some of the struggles of those like me in industry entering the academic world, (Ai S. Dr George Raywood-Burke) helps with understanding some shared challenges. I’m leaving with new connections, new questions, and a reaffirmed excitement about contributing to this evolving field, even in my own small way. Looking forward to continuing these conversations as the work progresses! And thanks to Steven M. M. for the picture and interesting chats over the conference.

58

7 Comments

Cyber Essentials used to be 'some' requirement in the public sector, and now it sits as one of the popular schemes in the commercial sector pushing the business case of reducing your insurance premiums. It isn't a tick in the box exercise, this is a clear message we are getting every year with the improvements in scheme, and the validation checks aimed at ensuring organisations are dealing with security matters in proactive (identify, detect, prevent) and reactive (response and recover) manner. Read about the Danzell question set changes and how you can plan and prepare your organisation for Cyber Essentials Plus. Get in touch to know how we Cyphere Ltd can help you reduce your resource fatigue for comliance and proactive security work on your roadmap.

7

MDR sharpens visibility. Because resilient businesses need a clearer lens. In today’s cyber landscape, what you don’t see often matters more than what you do. Modern security teams face an overload of alerts. MDR steps in to give clarity where it matters most: - Filters noise so only real threats demand attention - Adds context to alerts for faster understanding - Guides action with expert-driven recommendations - Accelerates decisions when time is critical - Strengthens resilience by spotting what tools alone may miss MDR makes your defenses sharper, faster and more reliable. Graftronics is a Sophos MDR partner, transforming IT teams across organizations in multiple industries. Reach out to us for assessing MDR for your setup. - Vimesh Avlani Managed Detection & Response | Cyber Resilience | Trusted by Mid-Market CXOs

20

4 Comments

Cyber news is only useful if it changes what you do next. SME Cyber Insights describes its purpose as: “Helping Keep UK SMEs CYBERSafe with Daily News, Threat Intel & Best-Practice.” That’s the bar. Not panic, not jargon, not vendor noise. A simple SME routine: * 15 minutes on Friday * Check: active phishing themes, critical patches for your stack, supplier incidents * Pick one action: patch, lock down admin access, reset credentials, brief finance, test a restore The UK Cyber Security Breaches Survey 2025 found 43% of businesses had a breach or attack in the last year. You don’t need to read everything. You need to act on the right things, consistently. What is the one cyber news item you wish you had acted on sooner? #SMECyberInsights #SMECybersecurity #SMECyberInsights #SME #CyberSafe #CyberSecurity #Cybersecurity #SMECyberNews https://lnkd.in/e-ERXezP

4

This is a truly exceptional organisation that is doing so much to both promote the cyber security sector and to support a diverse cohort of universities and students in raising their skills and awareness of opportunities out there. They have some fantastic sponsors and supporters, but they need more of both to make their project a viable and long-lasting venture. Ginger Cat Cyber Security does its best in giving time to mentoring a team for the second year and self-funding travel and hotel costs to support this fantastic group of undergraduates again in this year's final, but that's about the limit of my capacity. If you're in a better position to offer sponsorship and supporter opportunities, I urge you to give it a go. There's nothing more selfish than the support of others.

14

ICO UK Guidance on Encryption This document outlines best practices for implementing encryption to safeguard personal data, ensuring adherence to UK data protection regulations.

13