Blog about cybersecurity

We write about cybersecurity from the perspective of corporate practice. We cover regulations such as the new Cybersecurity Act (NIS2), the AI Act, DORA, and the CRA, as well as risk management, security processes, and management responsibility. Our consultants prepare the articles so that they are understandable even for people outside the field.

Dissatisfied young male manager looking with bugged eyes and astonishment, shocked by financial report, leaning on elbows while sitting at table in front of computer screen during hard working day
The new Cybersecurity Act also applies to companies that don’t realise it
Before you say the new Cybersecurity Act doesn’t apply to you, read this article. This time, it’s not just about the big players – the Act may apply to you as well!

READ MORE

Bearded male engineer using computer with blueprints on screen in office
Outsourcing vs. Internal cybersecurity manager: Pros and cons
Who should manage cybersecurity in your company? An employee, an external contractor, or a combination of both? Comparison of advantages, disadvantages, and recommendations.

READ MORE

manager-is-using-ballpoint-pen-marking-risk-assessment-matrix-high-risk-level
Risk management in cybersecurity = common sense on paper
How can you turn plain common sense into a tool for managing risks? Read about what to protect – and how – from a cybersecurity perspective, so your company stands on solid ground.

READ MORE

person-office-analyzing-checking-finance-graphs
GAP analysis: Identify the gaps in your cybersecurity
A GAP analysis will help you see where you stand with cybersecurity – where you meet the requirements, where you fall short, and what to do next.

READ MORE

green-up-arrow-bright-side-red-down-arrow-dark-side-which-print-screen-wooden-cube-block-economic-business-profit-growth-concept-copy-space
Higher and lower regime according to the new Cybersecurity Act
If you provide a regulated service, you need to identify which security tier applies to you – basic or stricter. But how do you determine your tier, and what does it actually mean in practice?

READ MORE

businesswomen-tick-mark-assessment-questionnaire-evaluation-online-survey-online-exam-choose-right-answer-exam-filling-out-online-survey-form-answer-test-questions-concept
Regulované služby podle nového zákona o kyberbezpečnosti
What are regulated services and why does it matter? Identifying them is key to determining whether you will be affected by the new cyber law and under what regime.

READ MORE

guarantee-concept-certification-manufacturing-iso-standards-audit-checklist-high-quality-photo
SOC 2 vs. ISO 27001: Which one makes sense for you – and when?
SOC 2 or ISO 27001? Both certifications address information security, but each in a slightly different way. In this article, we explain the differences, advantages, and limitations – and when each investment really pays off.

READ MORE

a woman holding a book in front of her face, partially obscuring her features.
Samoidentifikace podle nového zákona o kybernetické bezpečnosti
What is self-identification? In short, it means that every company must determine on its own whether the new Cybersecurity Act applies to it. If it does, the company is required to notify the state. But how exactly do you go about the self-identification process?

READ MORE

Businesswoman with smartphone close up
BYOD: When people bring their own phones and laptops to work
Do you allow employees to work from their own phones and laptops? Without clear BYOD rules, you risk data leaks and GDPR violations. Read what you need to keep under control.

READ MORE

Newsletter

Do you want to be sure that your company is protected from cyber threats and at the same time comply with the applicable legislation? Sign up for the newsletter and get practical advice from our legal consultants.

By clicking subscribe you consent to the processing of your personal data for marketing purposes.