From my experience working with Not for Profits, the biggest risks don’t come from sophisticated attacks. Instead, they come from what I call the “front door,” or the small, everyday decisions users make.
I recently conducted a current state review for another Not for Profit’s IT infrastructure. What I found was similar to other organisations that outsource their IT support to external parties – unnecessary cybersecurity risks.
Here are some things they would love for your organisations to understand about cybersecurity and how you can prevent a large number of these hacks from occurring.
Just because you have engaged a 3rd party to perform services for you, doesn’t alleviate you from the responsibility of keeping your and your stakeholders’ data safe.
What would you do first if you actually had a breach? That’s where the Incident Management Plan is very handy.
Decades ago, I was a non-technical manager in charge of cybersecurity for a massive government SAP implementation project. Not too long later, we had a serious cybersecurity breach where the hacker accessed data migration test data for the project, which included privacy information. If I could do it all over again, I would do 3 things differently.
Every Association has them…volunteers! We can’t live without them, but did you know that volunteers can increase your Association’s cybersecurity risks?
Last month, the Australian government passed amendments to the Privacy Act 1988. With this came more stringent responsibilities and potential penalties for many Not for Profits.
I often talk about the importance of backups to mitigate cybersecurity risks. However, I was personally reminded this week how important backups are also for business continuity in general.
Geoblocking tools have been around for a while, but I just realised their real power not too long ago. It was Christmas Day 2023.