Dan Swinhoe

Dan Swinhoe is UK Editor of CSO Online. Previously he was Senior Staff Writer at IDG Connect.

When and how to write a GDPR DPIA

When and how to write a GDPR DPIA

Data Protection Impact Assessments are a way for companies to minimize risk around new processes and keep a record demonstrating their efforts to comply with the GDPR.

Rebuilding after NotPetya: How Maersk moved forward

Rebuilding after NotPetya: How Maersk moved forward

In the wake of NotPetya attacks, Maersk’s IT and security teams embraced transparency, greater collaboration with business, and a risk-based approach.

3 DevSecOps success stories

3 DevSecOps success stories

Learn how three very different companies — Microsoft, Verizon and the Pokemon Company — got their development and security teams to work together smoothly.

UK cybersecurity statistics you need to know

UK cybersecurity statistics you need to know

Use these key data points to help understand and communicate the risks UK businesses face.

Good bots vs. bad bots: How Electrocomponents tells the difference

Good bots vs. bad bots: How Electrocomponents tells the difference

Electrocomponents sells billions of pounds worth of products online, but malicious bots threaten that business. Here's how they keep bad bots at bay.

Privacy Shield and Brexit: What now? What next?

Privacy Shield and Brexit: What now? What next?

Once the UK leaves the European Union, companies on both sides of the Atlantic will need to act to ensure compliant data flows between the UK and US under Privacy Shield.

UK enterprises want more machine learning in security but lack data scientists

UK enterprises want more machine learning in security but lack data scientists

Amid widespread skills shortages companies are looking to automation and machine learning, but will a shortage in data scientists curtail these ambitions?

How UK enterprises might protect EU citizen data post-Brexit

How UK enterprises might protect EU citizen data post-Brexit

If and when the UK leaves the European Union, UK organisations will likely turn to standard contractual clauses to ensure data flows continue legally. But that could change.

What is the cost of a data breach?

What is the cost of a data breach?

Data breach costs can be ongoing for years, a new study finds. Here's the breakdown of costs and advice on how to minimize them.

What is the NCSC’s Cyber Essentials scheme and how can it help enterprise CSOs?

What is the NCSC’s Cyber Essentials scheme and how can it help enterprise CSOs?

The UK government-approved accreditation scheme provides a baseline for companies to secure their systems and devices and can help enterprises secure supply chains.

Protecting fresh fruit from cyberattacks with automation and AI

Protecting fresh fruit from cyberattacks with automation and AI

With its entire business revolving around fresh produce, UK fruit producer Berry Gardens can’t afford for its supply chain to be disrupted by cyberattacks.

Where are UK organisations investing their security budgets?

Where are UK organisations investing their security budgets?

Cloud concerns, automation, and human threats are driving security investments in 2019, suggests a CSO study of organisations in the UK.

Morrisons data breach may change the rules around liability in cyber attacks

Morrisons data breach may change the rules around liability in cyber attacks

UK companies may soon be liable for actions of rogue employees, opening them up to massive litigation claims from people affected by data breaches.

If the GDPR fines don’t get you, the personal claims might

If the GDPR fines don’t get you, the personal claims might

With the deadline for mis-sold PPI claims coming to an end, GDPR could become the new cash cow for 'no-win, no-fee' law firms and spur a rise of class action lawsuits.

Safe travels: 7 best practices for protecting data at border crossings

Safe travels: 7 best practices for protecting data at border crossings

Border agents are requesting access to devices and the data on them with no regard to your organization's security policies. Here's how to protect that data and your employees.

Humans are the weak link: Security awareness & education still a challenge for UK companies

Humans are the weak link: Security awareness & education still a challenge for UK companies

A new CSO study of UK organizations suggestions human-centric security is a major priority.

5 ways the FTSE 250 falls down on web security (and 1 where they’re pretty good)

5 ways the FTSE 250 falls down on web security (and 1 where they’re pretty good)

The FTSE 250 is good at keeping internet-facing SMB & Telnet exposure down but has work to do around HTTPS and DMARC.

UK’s biggest cyber-hungry employers revealed

UK’s biggest cyber-hungry employers revealed

Competition for security talent in the UK is fierce, with the big four accounting firms all on a hiring spree.

GDPR vs UK Data Protection Act 2018: What’s the difference?

GDPR vs UK Data Protection Act 2018: What’s the difference?

Each EU member state has to pass its own legislation to actually bring GDPR onto its law books, and each implementation can have its own additions and exemptions. So, what’s special about the UK’s version, the Data Protection Act?

How JustEat finds and trains in-house security talent

How JustEat finds and trains in-house security talent

Employees in other departments might have skills that play well in security and the desire to make the jump. JustEat CISO Kevin Fielder explains how he introduces those people to cybersecurity and integrates them with the team.

Load More