News - Bridewell Consulting

Manchester Airport Group (MAG), the UK’s largest airport group has revolutionised its visibility and protection against cyber-attacks by bringing its security operations centre (SOC) in-house

Manchester Airport Group increases security event visibility by 1500% with Bridewell Consulting

UK’s largest airport group brings Security Operations Centre in-house to improve security posture and reduce cyber risk

Continue Reading >

Ransomware – Do I need Cyber Insurance?

Ransomware incidents continue to feature in the international as well as IT industry press, with recent high profile victims being JBS Foods, Fujifilm, Colonial Pipeline, Ireland’s Health Service Executive, and AXA Insurance. Less well publicised are the many smaller organisations that are held to cyber ransom.

Continue Reading >

“There are two types of companies: those that have been hacked, and those who don't know they have been hacked.” This aphorism is generally accepted within the information security and wider risk management industries as being true. If we accept that this is the case, then it is logical that we should prepare our companies for cyber-attacks, not only for the breach itself but also how they should respond. Some of the key questions we should be asking are listed below, followed by the details and information on the answers to these all-important issues: • How will you respond to the press / social media / public if they ask about it, or if the story gets out? • How will you identify what data has been stolen? • How will you determine the scope and scale of the breach? • How will you know how the breach happened, and how do you stop it happening again in future?

Preparing for the Inevitable

“There are two types of companies: those that have been hacked, and those who don’t know they have been hacked.”
This aphorism is generally accepted within the information security and wider risk management industries as being true.
If we accept that this is the case, then it is logical that we should prepare our companies for cyber-attacks, not only for the breach itself but also how they should respond.

Continue Reading >

Bridewell Consulting to open five new UK offices following rapid growth.

To meet rapidly-growing demand for its unique expertise, cyber security services company, Bridewell Consulting, is opening five new regional offices in the UK and plans to double headcount over the next 12 months.

Continue Reading >

In the early stages of an ongoing incident, after an organisation has identified an issue, a cyber security incident response team (CSIRT) will know very little about the task at hand and they will need to quickly establish the scope of an investigation. Initially an investigation’s scope can start off small. It can be a customer database server which has suffered an SQL attack, or a single employee’s workstation that has been infected with malware because of clicking a link in a malicious email. However, the scope can quickly scale as more information becomes known to the investigators.

Incident Response – Quickly Painting the Picture Using PowerShell

In the early stages of an ongoing incident, after an organisation has identified an issue, a cyber security incident response team (CSIRT) will know very little about the task at hand and they will need to quickly establish the scope of an investigation.

Continue Reading >

Bridewell Consulting joins Microsoft Intelligent Security Association

Bridewell Consulting has joined the Microsoft Intelligent Security Association (MISA), a group of technology providers who have integrated their solutions with Microsoft products to provide customers better protection, detection, and response.

Continue Reading >

Bridewell Consulting appoints Paul Driver as Chairman

Reading, UK – 24th May 2021 – Independent cyber security services company, Bridewell Consulting, has appointed Paul Driver as Non-executive Chairman to help steer the company’s growth strategy.

Continue Reading >

Why Should We Plan For A Pandemic In Business Continuity?

When the pandemic struck in 2020 and the world was told to “Stay at Home, Protect the NHS & Save Lives”, everybody complied, and life was put on hold for 3 months. Little did we know!
Everyone was asked to “work from home, if at all possible” and this impacted most businesses with many sadly closing for the final time.

Continue Reading >

A zero-trust security model simply assumes one thing. You trust no-one and no device. Putting a little more context into this, we have three principles. Verify Explicitly. Always authenticate and authorise based on all available data points, including user identity, location, device health, service or workload, data classification, and anomalies. Use least privileged access. Limit user access with just-in-time and just-enough-access (JIT/JEA), risk-based adaptive polices, and data protection to help secure both data and productivity. Assume breach. Minimise blast radius for breaches and prevent lateral movement by segmenting access by network, user, devices, and app awareness. Verify all sessions are encrypted end to end. Use analytics to get visibility, drive threat detection, and improve defenses.

Securing your digital space with a zero-trust security strategy

A zero-trust security model simply assumes one thing. You trust no-one and no device. Putting a little more context into this, we have three principles.

Continue Reading >

As we have now moved into Q2 we have already seen the continued trend in the media of companies that have become victim to Ransomware, with some businesses turning to paying the ransom and relying on cyber insurance to cover the costs. In March, we saw Acer become victim of the highest ever ransom demand of a reported $50 Million ransom after being subject to the REvil ransomware variant. Throughout March we saw a disturbing trend in schools being targeted, which at a time when we are relying on digital systems for home schooling it is a national and cultural topic.

2021 Ransomware and the Mitre Att&ck Framework

As we have now moved into Q2 we have already seen the continued trend in the media of companies that have become victim to Ransomware,

Continue Reading >

Security: adopting a detection and response approach

Featuring Martin Riley, Director of Managed Security Service, at Bridewell Consulting. Martin Riley explains why raising the drawbridge to a cyber-attack isn’t enough on its

Continue Reading >

Many medium sized organisations have by now successfully migrated their less complicated use cases to cloud services. These include email and SaaS as well as line of business applications that were already containerised or virtualised. However, the incentives and pressures to continue cloud adoption keep growing: to provide seamless customer experience, savings, anywhere access, to exit legacy and keep up with giant competitors or small challengers. Harder nuts to crack like rehosting ERP and refactoring monolithic apps are now in scope for some.

Cloud Security architecture for mid-size organisations

Many medium sized organisations have by now successfully migrated their less complicated use cases to cloud services. These include email and SaaS as well as

Continue Reading >

Real World Attack Simulation – Attacker do not care about your compliance.

Real World Attack Simulation – Attackers do not care about your compliance

The challenges faced by everyone in 2020 were unprecedented. Companies forced to run their businesses from within their own living rooms faced, not only issues

Continue Reading >

How does Azure Sentinel and Microsoft Defender XDR increase performance of security operations and increase Microsoft's value to businesses?

How does Azure Sentinel and Microsoft Defender XDR increase performance of security operations and increase Microsoft’s value to businesses?

The objective of a security operations centre is to prevent, detect, investigate, and respond to cyber security attacks and they do so with mixed results. Security operations focusing on cyber defence or blue team tactics need several tools to successfully achieve their objective and with the number of tools and vendors usually within operation, deploying a Zero Trust security framework to support a modern, digital business is an impossible task.

Continue Reading >

Hybrid SOC – Extend your Cyber Security team to leverage expertise and performance across threat detection and response.

Extend your cyber security team with a Hybrid SOC model

Developing the capability to prevent threats through monitoring, detection and response continue to be the goal for all organisations and a Hybrid SOC will help complement and develop existing teams, increasing overall security performance.

Continue Reading >

Bridewell Consulting secures multi-million investment from Growth Capital Partners

Cyber security services company, Bridewell Consulting, today announced a new multi-million investment from Growth Capital Partners (GCP). The deal, which sees the private equity firm take a minority stake in the business, forms part of a wider five-year growth strategy for Bridewell. Scott Nicholson and Anthony Young will retain ownership over the company strategy and leadership as Co-CEOs, with GCP acting as a strategic partner.

Continue Reading >

Bridewell entrusted to bolster security of 2021 Census programme

Security consulting firm engaged to undertake an overarching independent information assurance review of the programme’s security

Continue Reading >

Extended Detection and Response (XDR) – How does XDR fuel the modern SOC.

Extended Detection and Response (XDR) – How does XDR fuel the Modern SOC

Extended Detection and Response, shortened to XDR, is enabling Security as a Service providers and organisations to keep pace with the demands of the digitally transforming organisation by adapting to the needs of cloud services. But just what is XDR and how is it helping organisations successfully take up Threat Detection and Response services from a SOC?

Continue Reading >

Managed Detection and Response – For any environment.

Managed Detection and Response – Adaptable to any environment

In today’s modern enterprise it is common to see the convergence of traditional enterprise IT infrastructure such as private or on-premises data centre with public cloud, in a hybrid deployment. It is also common for enterprises to integrate their business operations with multiple cloud providers adding additional complexity and expense.

Continue Reading >

Managed Detection and Response - Managed Security Service Provider

Managed Detection and Response from a Managed Security Service Provider

Enterprises are increasingly recognising that deploying multiple point security solutions can reduce cyber risk when deployed correctly but do little to provide visibility and detection

Continue Reading >

Digital Transformation drivers across CNI

In the UK, we are all reliant upon Critical National Infrastructure (CNI) in our daily lives. CNI providers deliver services such as safe energy and clean water to our homes, enable international
trade and travel through transport, put food in our mouths and keep money in the banks. Just like other organisations globally, these industries are going through their own digital transformation journeys. In a world where security risks could put human lives on the line, there are real risks to be managed.

Continue Reading >

Majority of CNI organisations experience successful cyber attacks despite strong confidence in security

CNI organisations demonstrate strong appetite for digital transformation but misplaced confidence could be putting organisations at risk Reading, UK – 23rd February 2021 The majority

Continue Reading >

CNI cyber risks: looking forward to 2025

Critical National Infrastructure (CNI) is vital to keeping the nation running. Countless headline-grabbing cyber attacks in recent years have highlighted that no sector is exempt

Continue Reading >

CNI under pressure: alleviating stress from IT security teams

You only have to look at the latest news headlines to see that the critical national infrastructure (CNI) is facing growing risks. Whether it’s hackers

Continue Reading >