Notes (alphabetical)
Search to quickly find notes, articles, guides, and resources across the site.
Search to quickly find notes, articles, guides, and resources across the site.
Companies may choose to sell parts of their business to the public by listing themselves on a stock market. This process is known as an Initial Public Offering (IPO). By listing on a public stock market, an IPO allows companies to raise capital from a wide range of investors. Some of the main stock markets globally include the New York Stock Exchange (NYSE), NASDAQ, London Stock Exchange (LSE), Tokyo Stock Exchange (TSE), and Shanghai Stock Exchange (SSE). These markets provide platforms for companies to list their shares and for investors to trade them, facilitating the flow of capital and contributing to economic growth. ...
Context For the mid-career security professional, the Business Information Security Officer (BISO) represents a pivotal shift from purely technical execution to strategic governance. It is a role that demands high political aptitude and the ability to translate technical concepts into financial and operational language. If you are considering this path, you must be prepared to leave the command line behind and enter the boardroom. As organisations expand, a natural tension arises between the central mandate for security and the local demand for speed. The centralised security function sets policy, but the business units โ whether they are regional divisions or distinct product lines โ often find these policies obstructive or irrelevant to their specific context. ...
Related: Scaling People, by Claire Hughes Johnson
Continuous Integration and Continuous Deployment (CI/CD) is a concept in DevOps. CI/CD automates software development by merging code changes, running tests, and deploying applications. Continuous Integration (CI) integrates new and updated code, while Continuous Deployment (CD) automates the release of validated code to production or staging. CI/CD pipelines reduce manual errors, minimise deployment failures, and ensure consistent testing. With automated controls, such as security scans and compliance checks, this reduces risk and helps meet security standards. ...
A control is a procedure that a business adopts to mitigate a risk. A control may be preventative, in that it stops bad things from happening; detective, in that it notices when bad things happen and alerts the right people; or corrective, in that it not only detects the bad thing, but automatically fixes it. Preventative controls Includes: Authorisation Access controls Segregation of duties Validation checks Training Detective controls Includes: ...