What We Think

We will be using this page to share our thoughts on the latest regulation, thought leadership, incidents, threat updates and industry reports. If you would like to discuss any of our posts, please get in touch.

Looking for something in particular? Search below!

  • All
  • Insights
  • Newsletters
  • Resources

The world has become increasingly complex, interconnected, and dependent on a diverse ecosystem of suppliers and service providers. The cyber threat landscape is changing rapidly driven by technology advances, global instability and geopolitical risks....

As we approach the critical regulatory deadline of April 2025, financial organisations in the UK are focussed on demonstrating how they are addressing the UK’s Financial Conduct Authority (FCA) and Prudential Regulation Authority (PRA) Operational Resilience Regulations...

In April 2018, TSB attempted one of the largest and most challenging IT migrations; moving from a Lloyds Banking Group banking platform to a platform operated by SABIS, an IT provider owned by their new parent company Sabadell. The migration resulted in one of the...

We are coming up to 2 full years since the Operational Resilience policies from the UK regulators hit the street. IBS and Impact Tolerances are now established and many firms are focusing their efforts on scenario testing. Read our latest article from our Managing Director,...

Backup and recovery should be a critical part of every organisation’s cyber resilience. The interest and focus on cyber within the C-Suite has shown a much-needed shift from the traditional view that cyber security should be a technical control dealt with by the IT department,...

The highly interconnected nature of the financial services sector renders the challenge posed by third-party and supply chain resilience acute. In this latest article, we consider certain key strategies the sector might adopt to address these concerns and how these might help UK financial institutions...

In this month’s newsletter: as the EU Commission’s draft Digital Operational Resilience Act (DORA) consultation approaches finalisation, we take a look at what DORA means for firms and consider how it relates to other resilience regulations such as the v/FCA’s Operational Resilience Framework. We also...

In this month’s newsletter, we take a look at the cyber activity that’s played out in the conflict in Ukraine thus far and consider what this might mean for organisations in the West. We also cast an eye over Samsung’s recent string of cyber issues,...

In our latest bulletin, we reflect on the lessons we've learned whilst developing and implementing Operational Resilience scenario testing programmes for our financial services clients. Amongst other things, we consider good practice methodology, some commonly made mistakes, and what to expect from the next phase...