Dynamic Risk Management – The Path Less Trodden…

Dynamic Risk Management – The Path Less Trodden… March 2018 Traditionally, our approach to managing cyber security risks has been ‘static’ – in the sense that the threat analysis, risk assessment and treatment plan are performed as manual operations ‘up front’ of...

How PAC-MAN shows the importance of secure coding

How PAC-MAN shows the importance of secure coding May 2016 At Nexor, we provide solutions to customers where security is critical. To meet our customers’ needs, it is essential to make sure the code we write meets basic security requirements, so that the end product...

Building the Guard

Building the Guard February 2014 Okay. We’ve analysed the problem, we’ve produced an excellent design, and we’ve got our security approach nailed down. It’s time to get our hands dirty and actually build it. With a good design in place, one might assume that...

Collaborative Working in Practice

Collaborative Working in Practice December 2013 I have talked previously about the nature of the File Guard project, and what makes it a big task. Today, I’d like to share the new approach we took to create the design for that project. File Guard is a project with a...

A Brief Introduction into Threat Analysis

A Brief Introduction into Threat Analysis December 2013 The purpose of this blog piece is to introduce the concept of threat analysis, what it is and why it’s a good idea, while at the same time present a simple and effective way to try it yourself.  It is part...