This framing article summarises a set of responses to DSIT’s Cyber Governance Code of Practice consultation in Jan/Feb 2024. It highlights practitioner and institutional submissions, alongside thematic deep dives on law, assurance, incentives, and professionalism. The message: DSIT asked the right questions, but the hardest answers were still missing.
Continue reading
This article argues that DSIT’s Cyber Governance Code of Practice must embed professional recognition for cyber experts, just as directors rely on lawyers, accountants, and engineers. Without a register of recognised professionals, directors risk being accountable without credible support.
Continue reading
This article argues that obligations alone will not drive the adoption of DSIT’s Cyber Governance Code of Practice. To succeed, the Code must be backed by incentives — tax relief, insurance benefits, procurement levers, and reputational recognition — that make governance valuable to boards. Obligations can enforce compliance; incentives will create commitment.
Continue reading
Cyber Essentials has value as a baseline, but reaches only 0.3% of UK organisations and says little about governance. This article argues that DSIT’s Cyber Governance Code of Practice must raise the bar, from compliance to accountability, from self-attestation to credible assurance, and from one-off certificates to continuous governance. Cyber Essentials is the floor; governance must be the ceiling.
Continue reading
This article delves into the comparative analysis and practical integration of ISO 27001 and ISO 31000 standards, focusing on their synergies in enhancing organizational risk management strategies. It offers insights into the distinct yet complementary roles of ISO 27001’s information security management and ISO 31000’s broader risk management frameworks, advocating for a unified approach to manage and mitigate diverse organizational risks effectively.
Continue reading
This guide delineates the distinct yet interrelated roles of Product Owner, Product Manager, Development Manager, Customer Advocate, Project Manager, Programme Manager, and Change Manager within the product development ecosystem. It aims to clarify the focus, responsibilities, and objectives of each role, highlighting how they contribute to the successful development and management of products.
Continue reading
This article argues that self-attestation has failed as a credible assurance mechanism, citing Cyber Essentials’ low uptake and ISO 27001’s limits. It warns that if DSIT builds the Cyber Governance Code of Practice on self-assessment, it will fail. To succeed, the Code must mandate independent, accredited assurance that directors, investors, and regulators can trust.
Continue reading
This article outlines Lester Dent’s Master Plot Formula, a systematic approach designed to help writers craft engaging and tightly structured stories. Originating from the pulp fiction era, Dent’s formula divides a story into four equal parts, each with specific goals and challenges for the protagonist, culminating in a resolution that ties up the narrative threads. It offers a practical framework for narrative development, emphasizing pacing, character predicaments, and a satisfying conclusion.
Continue reading
This article examines DSIT’s 2024 proposal to embed cyber responsibility into company law. It argues that directors should carry legal duties for cyber resilience, as they already do for finance and health and safety — but only if those duties are proportionate, professionalised, and practical. The consultation did not change the law, but the direction of travel is unmistakable.
Continue reading
This article examines the IET’s joint response to DSIT’s 2024 consultation on the Cyber Governance Code of Practice. Building on my practitioner-led analysis, the IET added institutional weight: emphasising professional recognition, proportionality for SMEs, broader engagement, and integration into training. It shows how practitioner insight and professional consensus can work together to shape policy.
Continue reading
This article revisits my practitioner-led response to DSIT’s 2024 consultation on the Cyber Governance Code of Practice. It highlights key issues I raised: supply chain risk, flaws in self-attestation, tool overload, lack of incentives, and the need for continuous governance. The argument is simple: cyber resilience belongs in the boardroom, but only if policy is grounded in practice.
Continue reading
The DSIT Cyber Governance Code of Practice consultation (Jan 2024) proposed five principles for boards: risk management, strategy, people, incident response, and assurance. But it left key gaps: no incentives, little for SMEs, no professional recognition, and weak thinking on assurance. This article argues the consultation was historic, but incomplete — a foundation that required sharper, practitioner-led input.
Continue reading
You can probably guess what stage Cyber Tzar is at from my most recent reading list. I put together this article exploring the essentials of thriving in the UK’s dynamic startup ecosystem. This guide offers a blend of recommended readings and practical resources, tailored to help entrepreneurs and startups in the UK effectively navigate the investment process, stay attuned to market trends, and engage with local networks for growth and success.
Continue reading
I like ‘Miracleman’. I like ‘Uber’. So this article delves into the thematic and narrative parallels between Alan Moore’s “Miracleman” and Kieron Gillen’s “Uber.” Exploring how both comics redefine superhero conventions through their dark, realistic portrayal of superhuman powers, the article highlights the influence of Moore on Gillen’s work and the shared focus on the catastrophic consequences of such powers in society.
Continue reading
I like O’Neill. One of my lads is doing Lit. This article provides a comprehensive view of the landscape of American playwriting, emphasizing the unique contributions of O’Neill, Williams, and Miller, while also acknowledging the broader context of American theatre history and the significant figures who have contributed to its evolution.
Continue reading
In the violently wacky and vehemently whimsical world of Alan Moore’s characters, DR and Quinch, known for their satirical and bizarre escapades, a stand-out moment is the death of the faux Marlon Brando character. Cleverly bridging the gap between their universe and that of classic Hollywood cinema of the decade before.
Continue reading
In her article, “Here’s Why Each Myers-Briggs® Personality Type is Mad at You”, the author, Susan Storm takes us on a lighthearted tour through the 16 Myers-Briggs personality types, exploring the reasons each might be irked with you. This piece is a creative exploration into personality psychology, but it also opens a window into the broader discussion of how personality types interact in various social contexts, including how they might perceive or misinterpret the behaviours of individuals with neurodiverse conditions like Asperger’s Syndrome.
Continue reading
In this analysis, I delve into Samantha Floreani’s Guardian article, which offers a critical perspective on the technology industry, venture capitalism, and its influential figures. I aim to provide a balanced review, highlighting the article’s strengths while suggesting areas for improvement and further exploration.
Continue reading
Kim Gusta’s Content Alignment Model offers a structured approach to optimising content for specific business goals, from generating leads to improving SEO. It maps content types to objectives, helping organisations strategically align their messaging to maximise impact. This guide explores the model, its applications, and the value it brings to content marketing strategies.
Continue reading
The recent FT article “Electrifying Change: How the Auto Salvage Industry Gears Up for the EV Era” by Claire Bushey gives an overview of the coming challenges for the salvage industry. As the electric vehicle (EV) revolution accelerates, the US auto salvage industry stands on the brink of a transformative shift. As these EVs near the end of their lifespans, the industry is gearing up for challenges and opportunities that lie in recycling a new breed of vehicles, where the battery becomes the star. This article is a response to the FT with analysis and strategic suggestions.
Continue reading