Blog

Australia Defence Industry Awards 2021 | Privasec
ADIA2021

Privasec and Shamane Tan Named Finalists for Australia Defence Industry Awards 2021

Privasec and Shamane Tan have been named finalists at the Australia Defence Industry Awards 2021 in the Cyber Business of the Year and Marketing/Communications Professional of the Year categories respectively.

Read More →
Demystifying Workshop
ISO 2700 certification

Demystifying Two Different Worlds: A Look into ISO 27001 and Red Teaming

Red Team Attack Simulations mimic an adversary attacking your organisation. Red Team Attack Simulations enable you to understand and improve upon your ability to identify and respond to an adversary tyring to access your systems or information.

But what actually happens during a Red Team and how does an Attack Simulation work in practise?

Read More →
Cyber Readiness
Cyber Resilience

Cyber Readiness for Financial Institutions

Red Team Attack Simulations mimic an adversary attacking your organisation. Red Team Attack Simulations enable you to understand and improve upon your ability to identify and respond to an adversary tyring to access your systems or information.

But what actually happens during a Red Team and how does an Attack Simulation work in practise?

Read More →
three-locks-and-a-chain
Privasec RED

What happens during a Red Team Attack Simulation?

Red Team Attack Simulations mimic an adversary attacking your organisation. Red Team Attack Simulations enable you to understand and improve upon your ability to identify and respond to an adversary tyring to access your systems or information.

But what actually happens during a Red Team and how does an Attack Simulation work in practise?

Read More →
RMIA feature image | Privasec
Cyber Resilience

Updates To ISO 27002 And Its Impact

With the pending updates to the ISO 27002, it is now more well-rounded for tackling information security risks. What remains a constant, is the purpose of the standard to provide implementation guidance on security best practices for compliance to ISO 27001.

Read More →
CORIE Guide | Privasec
CORIE

A Beginner’s Guide to CORIE

The CORIE Framework – is a new approach to assessing cyber maturity and resilience and you definitely need to be investigating it this year.

Read More →
Cyber Resilience Summit 2021
Cyber Resilience

Cyber Resilience Summit NSW 2021

Privasec is a proud sponsor for the Cyber Resilience Summit NSW 2021 at Dockside Darling Harbour in June. It was an enjoyable event organised by Forefront Events, where the team from Privasec met and learned from senior security and cyber risk professionals in the industry. We heard perspectives from multiple sectors around the theme of improving cyber posture to manage threats. A strong lineup of CISOs and security speakers explored common cross-industry security challenges and potential solutions to safeguard organisations’  integrity, technology and assets. Speaker Jacqueline Jayne, who is the Security Awareness Advocate at KnowBe4, covered the 7 dimensions of security culture: Attitude, Behaviours, Understanding, Knowledge & Awareness, Communication, Policies, Unwritten Rules of Conduct. The question she left everyone with, was: “Do your people understand why cyber security is everyone’s responsibility ? Do they know that everyone has a critical role to play?”. Some of the other highlights from from the CISOs and industry leaders such as Bradley Busch, Mark Smink, Dave Cowan, Saleshni Saleshni, Wilson Chiu, Daminda Kumara, Ajay Dua, and Dali Kaafar include:  The importance of simplifying staff and customer experience with security; How we can lean on our partners and suppliers for scale and availability if an organisation …

Read More →
1
Privasec RED

Red Team Incognito War Stories: Crashing down the castle wall through deception

The impact from a lack of security awareness training through the eyes of a recent red team engagement performed by the Privasec Red team.

Read More →
Soc2
SOC 2

A Dummy’s Guide to SOC 2

SOC 2® reporting solves the issue of how a business leader can trust that a service provider is taking its obligations seriously by conducting a SOC 2® Type 1 and Type 2 report to evaluate data protection systems and procedures.

Read More →
ZenTao CMS | Privasec
Privasec RED

ZenTao CMS – A Monkey’s journey to Priv Esc & Remote Code Execution

This article explores Zentao, understanding how its routing works, and identifying several vulnerabilities that lead to an attack chain that an attacker can execute in order to achieve remote code execution.

Read More →
third party risk management
Cyber Attacks

Managing Third-Party Risk in 2021

It is always in a company’s best interest to protect itself from vendor risks – before entering, during, and even after the vendor relationship has been established.

Read More →
Privabroadcast
Client Testimonial

Former Service NSW Chief Security Tech Officer Speaks on Security Partners Engagement

Get to know the former Chief Security & Technology Officer at Service NSW as he shares in under 5 minutes his views on how companies can leverage their security partners and gain the most value in partner engagement.

Read More →

Already know what you are after?

Get a quick quote from our consultants.