Service Line News

Information Security

Headers Ribbon

Information Security

Navigating The Prudential Authority Joint Standards And The Potential Gaps In Your ISMS And Cyber Controls

In the ever-evolving and rapidly innovating landscape of financial services, the safeguarding of sensitive information against digital crimes and digital threats has become imperative for resilient services and for maintaining digital trust. To address these critical risks, the Financial Sector Conduct Authority (FSCA) and Prudential Authority have introduced the Joint Standards for Information Technology Governance and Risk Management Requirements, as

Information Security

THE LATEST CHANGES TO ISO 27002:2022

Exciting news! Mobius Consulting is proud to announce that we have a 100% success rate in getting organisations ready for ISO27001 certification, and we are furthermore fully equipped to help organisations implement the latest ISO 27002:2022 guideline. ISO 27001 is a globally recognised standard for Information Security Management. And now, with the release of ISO27001:2022 and ISO 27002:2022, organisations will

Information Security

XSS TO SHELL

ZERO-DAY ADVENTURES – UNKNOWN UNTIL WE FOUND THEM For the astute among you, you’ll notice that the chaining of these types of exploits has been seen/used often enough, but the implications thereof are often overlooked. In this write-up we delve a little deeper into a real life example of how we uncovered three zero-days in a vendor system. A big

Information Security

STRENGTH IN DIVERSITY WITH MOBIUS CONSULTING

DIVERSITY IN LEADERSHIP AROUND THE WORLD A recent study by Boston Consulting Group showed that companies that value diversity amongst staff and senior management increased their revenue by 19%. The study found that “increasing the diversity of leadership teams leads to more and better innovation and improved financial performance.” It looked at 1700 different companies across 8 different countries, with

Information Security

5 STEPS TO CREATING A CYBER SECURITY INCIDENT RESPONSE FRAMEWORK

With Patrick Ryan, Amanda Hechter and Raymond du Plessis from Mobius Consulting        The NIST Cyber Security Incident Response Framework   Cyber security breaches should be taken as a “when” and not an “if” occurrence, especially given the rise in cyber attacks due to remote working. The wrong time to put your cyber security incident response plan in place is when confronted with the pressure