The Security Knowledge Centre and Blog

August 1, 2025

Remote work increases the risk of data leakage, especially when employees use personal devices or unsecured networks. This blog outlines practical data loss prevention strategies—like encryption, access controls, endpoint security, and employee training—to help safeguard sensitive information and maintain trust.

February 15, 2026

Strong passwords and Multi-Factor Authentication are still your best defence against cyber threats. This blog explores what makes a secure password, why reuse is risky, and how password managers like LastPass can help protect your accounts. Connect with Kris to learn more.

February 11, 2026

ISO 27001 is more than a compliance exercise—it’s a powerful framework for building real security, reducing risk, and earning client trust. This blog explores how ISO 27001 drives long-term value by helping your organisation stay secure, resilient, and competitive in a fast-changing threat landscape.

August 6, 2025

An Acceptable Use Policy (AUP) sets clear expectations for how employees should use company IT resources, helping reduce risk and support ISO 27001 compliance. This blog explains why an AUP matters, what to include, and how to make it effective across your organisation.

August 6, 2025

Not all ISO 27001 controls add real security value—and a legal register is a prime example. This blog challenges the habit of ticking boxes for compliance and encourages a more strategic, security-focused approach to Annex A. Want to share your take? Connect with Kris on LinkedIn.

February 11, 2026

Implementing ISO 27001 can be challenging—but common mistakes like poor documentation, lack of leadership buy-in, and neglecting ongoing improvement can hold you back. This blog outlines the top five pitfalls and how to avoid them to build a stronger, more resilient security framework.