ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Benchmarking, checkboxes and cyber hygiene"
Episode Synopsis
It’s often said that the cybersecurity and data privacy worlds rely too much on checkbox compliance exercises – and fail to get to grips with the real issues that put data and systems at risk.
But how true is that? Organisations face both increasing threats and increasing regulatory burdens. And often, CISOs and other business leaders lack a true picture of good practice.
This has prompted security researchers at Panaseer to develop a series of real-world security benchmarks.
The research came up with 18 steps, that look more deeply at security standards and controls. The paper also sheds light on why some organisations still fail to carry out basic cyber hygiene measures, and how businesses can improve.
We asked the report’s author, Charlotte Jupp, to explain the ideas behind the research.
But how true is that? Organisations face both increasing threats and increasing regulatory burdens. And often, CISOs and other business leaders lack a true picture of good practice.
This has prompted security researchers at Panaseer to develop a series of real-world security benchmarks.
The research came up with 18 steps, that look more deeply at security standards and controls. The paper also sheds light on why some organisations still fail to carry out basic cyber hygiene measures, and how businesses can improve.
We asked the report’s author, Charlotte Jupp, to explain the ideas behind the research.
More episodes of the podcast Security Insights
Resilience in cyber: an agony aunt's view
18/12/2025
Insights Interview: Chris Dimitriadis, ISACA
13/11/2025
Ukraine, cyberwar and CNI
30/10/2025
Bug bounties: risks and rewards
16/10/2025
DDoS, geopolitics and AI
02/10/2025
Cyber skills: a crisis of our own making?
18/09/2025
Vulnerabilities, CVEs and the attack surface
21/08/2025
In God we trust