Canadian security agency will soon be able to launch cyber attacks against terrorists


New anti-terror laws introduced Tuesday include a beefed-up security force that would be able to launch cyber attacks against terrorist groups and other governments.

The federal Liberal government is creating a new ?super? civilian watchdog to review security and intelligence agencies across government and extending new powers to Canada?s electronic spy agency.

The proposed changes were unveiled yesterday as part of a massive legislative overhaul of Canada?s anti-terrorism regime.

After tabling the 139-page bill in the House of Commons, Public Safety Minister Ralph Goodale said it aims to strike a better balance between strengthening security in a fast-changing threat environment, and safeguarding the charter and privacy rights of Canadians.

View complete post and video on The Resilience Post


You don't need a metal hook anymore to steel a car. A smartphone will do just fine!


The issue of personal data being left behind in devices we rent or own poses a serious risk - hackers could get access to it and use it for blackmail purposes or to steal our money using cloned identities.

Richard Stiennon is chief strategy officer for Blancco Technology Group, a company that specialises in data erasure. He admits that deleting this data is easier said than done.

''Simply going into a car's settings and deleting your phone from the list of previously paired Bluetooth devices does not guarantee that this will overwrite the data on the car's storage device,'' Mr Stiennon says.

''It will only prevent casual hackers like the next renter from seeing it. A better option is to overwrite all user data or perform a factory reset - if the vehicle allows it - to ensure the data is 100% erased and cannot be recovered.''

Read entire post on The Resilience Post


New ISO handbook brings environmental management to SMEs


Implementing an environmental management system can be challenging for small businesses. ISO's new handbook has been designed to assist SMEs in improving their environmental performance using ISO 14001.

The benefits of addressing environmental issues are not only linked to the protection of the environment, they can also be found in a company's business performance and profitability. The handbook ISO 14001:2015, Environmental management systems - A practical guide for SMEs has recently been updated to take into account the latest edition of the standard, published in 2015.

For SMEs, implementing an environmental management system can be a real challenge as technical and financial resources, in addition to staff time, is often limited.

Read entire post on The Resilience Post   |   ISO 14001 Environmental Management System


GDPR: A quick start guide


We look at how UK organisations can prepare for the General Data Protection Regulation.

On 28 May 2018, the EU's ambitious General Data Protection Regulation (GDPR) comes into force, with the aim of strengthening data privacy and protection for all EU citizens.

The regulation puts individuals firmly back in charge of their personal information and what happens to it. From sole traders working at home to giant multinational corporations, no one (except law enforcement and intelligence agencies) is exempt. But how well-prepared is the world?

The regulation places significant new structures upon organisations, including:

  • Having to build privacy into systems by design (and switched on by default);
  • Conduct regular privacy impact assessments; implement stronger consent mechanisms (particularly when processing data pertaining to minors);
  • Follow stricter procedures for reporting data breaches;
  • Document any use of personal data in far more detail than previously.

Read complete article on The Resilience Post


One year to go: The countdown to GDPR begins


The countdown to the General Data Protection Regulation (GDPR) is officially on. On 25th May 2018, the introduction of the new legislation will mark the start of a new era of how businesses manage, process, store and share personal customer data. This new legislation will replace the long-standing Data Protection Act 1998 and introduce stricter rules on how businesses process personal customer data.

What do businesses need to know about GDPR?

In essence, the rules will introduce stricter requirements around when brands and businesses can use data. This means they will need to be clearer about the information they are requesting from customers and how they will use it. Confusing contracts and terms and conditions will no longer be an option; companies will need to provide transparency at all stages during the collection of customer data to ensure consent is given unambiguously.

Read complete article on The Resilience Post