Welcome to De Winter Information Solutions

The importance of critical evaluation of technologies to strengthen cybersecurity (podcast) - Eddy Willems

Eddy Willems in conversation with Brenno de Winter, information security and privacy expert.

In the latest episode of the podcast series ‘My Precious Data’, Eddy Willems, Security Evangelist at WAVCi, talks to Brenno de Winter, a leading expert on information security and privacy. Brenno is known for his in-depth knowledge and experience, including through his involvement in the hacking of the OV-chipcard and his work as Chief Security & Privacy Operations at the Ministry of Health, Welfare and Sport in the Netherlands.

Better every day: but for real now

In a time of rapidly evolving digital threats, a culture of continuous improvement is crucial for effective information security. Companies cannot suffice with a one-off risk inventory or a stack of security policies; they need to constantly sharpen their processes. The Plan-Do-Check-Act (PDCA) cycle - often called Plan, Do, Check, Act, or Plan, Execute, Check, Adjust - provides a structured approach to doing this. This PDCA cycle is at the heart of many quality and security programmes, and is explicitly recommended in standards such as ISO 27001 for information security.

Holistic security thinking: more than just technology

Cybersecurity is high on the agenda in almost every organisation. Yet many companies remain vulnerable because information security is not always deeply embedded in business operations. Often, measures are only taken after the fact, for instance in case of incidents or under pressure of new laws and regulations. At the same time, we see that organisations that do take a proactive, holistic approach are less likely to experience serious problems. In this article, we show why an integral vision on cybersecurity is so important, where things often go wrong in practice and how companies can raise their security level sustainably.