In Part 1 of this blog, I argued that relying solely on Standards as your blue-print for information security will leave you exposed, as they only offer generalised considerations, are outdated or misleading.

In Part 2 and in conjunction with my guest blogging series with CSO, I take a closer look at the subjectivity of privacy and risk standards and outline the specific actions you can take to improve security outcomes for your organisation.

Click here to read my blog on the CSO website.

Are you looking for more practical and specific guidance on how to work out the appropriate level of security for your organisation? If so, contact one of the Linus team today.