adesso BLOG

This blog post discusses the security risk of consistently implementing a secure software development process.

In my blog post, I discuss two approaches to dealing with IT security requirements: traditional requirements engineering for end-to-end documentation and an iterative approach that speeds up IT security integration by carrying out risk assessments early on in the process. Addressing the requirements in an early phase and continuous improvement are prioritised over full and immediate integration. Using suitable tools and continuous monitoring minimise the risks prior to implementation.

What does brain surgery have to do with IT and application security? At first glance, not much. Nevertheless, I would like to look into this comparison in my blog post, because it strongly illustrates the importance of expertise and experience in complex areas.

The cyber kill chain framework was developed for use in analysing and defending against cyber attacks. The framework consists of a series of seven steps that describe the typical phases of a cyber attack. I will explain the steps involved and the advantages of this strategy to defend against cyber attacks in more detail in my blog post.

Well, did I get your attention? Would you have clicked a big button saying ‘read more here’ if it had been placed under this headline? In my blog post, you’ll learn more about some of the methods that are used to digitally manipulate millions of people every day. I’ll explain to you the risks hidden behind these kinds of messages, what’s meant by the terms ‘clickbaiting’ and ‘hoax’ and how you can expose falsehoods and increase your awareness.

Digitalisation and cross-hospital and cross-network working are of utmost importance in the hospital world. Above all, it is essential to comply with the requirements of the General Data Protection Regulation (GDPR). In this blog post, we explain how this can be achieved and describe the solutions we offer to support hospitals.

In IT, IT service management (ITSM) is mainly concerned with optimising the quality of IT services. Practice has shown that optimising security management is often more effective at improving information security in the longer term than investing in security technology is. As the focus on ITSM has increased in the IT environment, I’m going to use this blog post to explain how performance measurement and security costs are related in this context.

The security of IT services is always changing Continuously developing an information security management system (ISMS) based on existing standards and tailored adjustments can lead to the information being used securely in the long term. That’s why in this blog post, I explain what’s behind each of the standards in the ISO 2700x series and put them to the test.