Paul McKay

Senior Analyst

Forrester Bio

Paul McKay

Author Insights

BLOG

European Intelligence Announcement Shows The Importance Of Assessing Geopolitical Risks

Paul McKay October 5, 2018

Today, we in Europe woke up to headlines about attempted cyberattacks by Unit 26165 of Russia’s GRU intelligence service. In a world where the attribution of cyberattacks is a notoriously difficult task, the UK, the Netherlands, and the US made a joint announcement of the foiling of an attempt by four hackers linked to Unit […]

Read More
BLOG

Come And Join Us To Learn How Security Can Safeguard Your Digital Investments And Help You Serve Your Customers Effectively

Paul McKay September 13, 2018

Security is one of those words that is associated with hackers, reputational failures, and fear, uncertainty, and doubt. I disagree: Security, when done properly, can be one of the biggest investments you make. It is crucial to building customer trust and safeguarding digital investments. Furthermore, responding well to a breach can enhance shareholder value and […]

Read More
BLOG

Brexit Paper Increases Chances Of No-Deal Outcome For Security

Paul McKay July 13, 2018

On Thursday afternoon, the UK government published its white paper, “The United Kingdom’s exit from and new partnership with the European Union.” The last-minute changes, following a spate of Cabinet resignations late in the day, resulted in the publication being delivered to the House of Commons as MPs were timetabled to debate it. This led […]

Read More
BLOG

All The Fun Of The Fair: Some Initial Thoughts On Infosecurity Europe 2018

Paul McKay June 11, 2018

Last week, I attended Infosecurity Europe 2018, the largest event of its kind in Europe. The event is a carnival of the cybersecurity industry, with promotion of every information security product imaginable. There are also more conference training tracks than your average railway. The show gives a good indication of the key issues that are […]

Read More
BLOG

Nothing Is Agreed Until Everything Is Agreed . . .

Paul McKay May 22, 2018

The European Union has always stated when it comes to Brexit: “Nothing is agreed until everything is agreed.” Time is running out to come to agreement on a wide range of issues, including security and defense cooperation. In my first report for Forrester — Brace Your Security Organization For Post-Brexit Challenges — I look at the […]

Read More
BLOG

IETF Takes GDPR Influence A Little Too Far In Its Draft Standard For Logging For Internet-Facing Servers

Paul McKay May 16, 2018

The General Data Protection Regulation (GDPR) is responsible for a lot of changes to privacy policies and standards, leaving everyone rushing to be ready for GDPR day on May 25, 2018. The Internet Engineering Task Force (IETF) has also been busy recently updating some of its standards in response to the GDPR. One change that has […]

Read More
BLOG

Just When You Think You've Sorted GDPR . . . A New EU Cyber Regulation Comes Into Force Today

Paul McKay May 9, 2018

Today (May 9, 2018) is the deadline for the new Network and Information Security (NIS) Directive to be transposed into EU member states’ national legislation. This new regulation is aimed at creating a base level of security for organizations that are operating essential services within the EU. The primary sectors covered by this regulation are: […]

Read More
BLOG

Just When You Think You've Sorted GDPR . . . A New EU Cyber Regulation Comes Into Force Today

Paul McKay May 9, 2018

Today (May 9, 2018) is the deadline for the new Network and Information Security (NIS) Directive to be transposed into EU member states’ national legislation. This new regulation is aimed at creating a base level of security for organizations that are operating essential services within the EU. The primary sectors covered by this regulation are: […]

Read More
BLOG

TIBER-EU Framework Offers An Opportunity To Improve FinServ Cyber Resilience

Paul McKay May 8, 2018

The European Central Bank yesterday launched its TIBER-EU (Threat Intelligence-Based Ethical Red Teaming for the European Union) framework for financial institutions regulated within the EU. In short, there is a new voluntary framework for threat intelligence-led red-teaming exercises that has been published by the European Central Bank (the Central Bank for eurozone economies). The framework […]

Read More