Tag Archives: NCSC

Directors and Cyber Governance: My Practitioner’s Response to DSIT’s Consultation

Leave a Reply

This article revisits my practitioner-led response to DSIT’s 2024 consultation on the Cyber Governance Code of Practice. It highlights key issues I raised: supply chain risk, flaws in self-attestation, tool overload, lack of incentives, and the need for continuous governance. The argument is simple: cyber resilience belongs in the boardroom, but only if policy is grounded in practice.

Continue reading

Before the DSIT Cyber Governance Code of Practice: What the Consultation Proposed

Leave a Reply

The DSIT Cyber Governance Code of Practice consultation (Jan 2024) proposed five principles for boards: risk management, strategy, people, incident response, and assurance. But it left key gaps: no incentives, little for SMEs, no professional recognition, and weak thinking on assurance. This article argues the consultation was historic, but incomplete — a foundation that required sharper, practitioner-led input.

Continue reading

Comparing SaaS GitHub and Self-Hosted GitLab: An In-Depth Analysis of Pros and Cons with Alternatives

Leave a Reply

On the penultimate day of the NCSC For Startups programme, there was an ad hoc discussion on code repositories and DevOps tooling. A couple of the cohort were long-time GitHub users, while we use a self-hosted version of GitLab. One of the teams had just moved from the latter to the former, while the final team used Azure DevOps. I thought it would be nice to write up an objective look at the first two options, along with alternatives, as well as summarise our decision. I didn’t want to cover Azure DevOps as I’ve just spent two years using it and I’m grateful to have escaped its clutches. Learn more here.

Continue reading

“What’s Causing a Rise in Seed-Stage Valuations?”: Analysis, Key Takeaways, and Advice

Leave a Reply

In response to Beauhurst’s article “What’s Causing a Rise in Seed-Stage Valuations?” on seed-stage valuations, this critique offers a concise analysis, highlighting strengths, areas for improvement, and key takeaways. We delve into the complex landscape of seed-stage valuations, exploring the factors behind their rise and assessing the article’s contribution to the discussion.

Continue reading

Thriving in Perpetuity: Simon Sinek’s Infinite Mindset in Action

Leave a Reply

Explore how Simon Sinek’s Infinite Mindset model can revolutionize organizational strategy and leadership in our comprehensive analysis. This article provides an in-depth look at the model’s principles, showcases their application within the cybersecurity pioneer Cyber Tzar, and offers a step-by-step guide to cultivating an infinite mindset in your own organization. Learn how to lead with vision, adapt with courage, and build a legacy of sustained success.

Continue reading

Empowering Success Through Purpose: Mastering Simon Sinek’s Golden Circle Model

Leave a Reply

Discover the essence of Simon Sinek’s Golden Circle model in our latest article, where we explore its foundational principles and offer a practical guide to applying it in your organization. Learn how to articulate your purpose, differentiate your approach, and clearly define your offerings to inspire and achieve lasting success. Whether you’re enhancing cybersecurity with Cyber Tzar or navigating another sector, this article provides the insights you need to connect deeply with your audience and turn vision into action.

Continue reading

Crafting Compelling Value: Mastering the Value Proposition Canvas and Mapping

Leave a Reply

Unlock the full potential of your business offerings with our in-depth guide on the Value Proposition Canvas and Mapping. Learn how to align your products and services precisely with customer needs, crafting a value proposition that speaks directly to your target audience. This article provides a step-by-step approach to understanding customer requirements, optimizing your offerings, and communicating value effectively, setting the stage for enhanced customer satisfaction and business success.

Continue reading