How to Conduct Effective 3rd-Party Vendor Security Reviews

Posted on February 15, 2024February 15, 2024 by Keith Marlow

This article aims to provide a comprehensive guide to performing effective 3rd party vendor security reviews, outlining key steps, best practices, and strategies to mitigate risks and ensure a robust security framework.

Defence in Depth Security, it works

Posted on February 2, 2024February 2, 2024 by Keith Marlow

We look at how defence in depth can reduce the risk and impact caused by human error, the #1 cause of security incidents.

Strengthening the Fortress: The Crucial Role of Attack Surface Management in Business

Posted on October 10, 2023October 24, 2023 by Keith Marlow

This article delves into the importance of attack surface management, highlighting specific areas that require careful consideration to ensure the security of an organization.

Security Questionnaires online, are they safe?

Posted on November 6, 2021October 24, 2023 by Keith Marlow

Those who have been following my posts know I have an evolving love/hate relationship with online security questionnaires. Done well, they can speed up the process for the client and service provider and establish a properly shared understanding of where risks lie and how those can be managed over time. Done badly, they can be Read more about Security Questionnaires online, are they safe?[…]

Protecting against the biggest security vulnerability

Posted on October 30, 2021October 30, 2021 by Keith Marlow

First off, do you know what the biggest single cause of security vulnerabilities and successful attacks against computer systems is? A lot of people think of insufficient access controls, a lack of process, SQL injection, etc but there is something more fundamental sitting behind a lot of these that often gets overlooked. I’m talking about Read more about Protecting against the biggest security vulnerability[…]

Online Security Questionnaires – do they work?

Posted on April 28, 2021April 28, 2021 by Keith Marlow

Online security questionnaires, a blessing or curse? In this article I explore my experiences with them and what can be done to improve the process.

The Defence in Depth Security Model Explained

Posted on February 7, 2021October 17, 2023 by Keith Marlow

The Defence in Depth Security Model is one of those security concepts I often see incorrectly implemented or not used to its full potential to protect services or systems. There is way more to it than first meets the eye. In this article you will learn: What is the Defence in Depth Security Model? The Read more about The Defence in Depth Security Model Explained[…]

Aykira Internet Solutions

Cyber Security Experts and Cloud Consultants Sydney

Category: techniques