
The Emperor’s New Clothes: Why Compulsory CBTs and Phishing Tests Keep Failing
Most phishing training, and indeed most compulsory computer-based training (CBT) modules, are largely ineffective in reducing incidents - and are therefore a waste of time and resources.
Finally we have the data we need to challenge this, and find a better path to user awareness that may actually reduce the frequency and impact of cyber incidents.

Lessons from the Titanic: when you don’t respond to a crisis
When the RMS Titanic hit an iceberg on 15 April 1912, she set off flares and her wireless operator sent out a distress call. The RMS Carpathia responded, but by the time she arrived, the Titanic had already sunk: only those who had made it to the lifeboats could be saved. Some 1,500 people died.
Another ship was closer and could potentially have responded faster—perhaps even fast enough that more lives could have been saved. Yet despite seeing the flares, she did nothing.

Introducing Guernsey Cyber Security Centre
In creating Guernsey Cyber Security Centre, JCSC are working with the States of Guernsey to ensure all the Channel Islands have access to specialist support for cyber security incidents, as well as advice and guidance to built better and more effective defences.



Introducing Incidentally: Why We Must Embrace Risk and Learn From Incidents
Progress demands risk, and incidents are inevitable. Based on 25 years of personal experience, Incidentally will explore the role of risk in driving success, particularly in cybersecurity, and how we can manage and learn from an incident or cyber crisis.