-
Securing and rehosting a business-critical application service
Read more: Securing and rehosting a business-critical application serviceSecuring and rehosting a business-critical application service Assessing, remediating and transitioning an application stack into a secure managed environment Read Time A UK-based organisation relied on a business-critical application stack to support day-to-day operations. The application was also important to work involving UK Government departments, which meant security, assurance and operational confidence were central to…
-
Data Handling and Sharing
Read more: Data Handling and SharingData is handled constantly, often without much conscious thought. Files sent by email, documents saved to shared drives, information passed on in a conversation or a screenshot. Most of the time this happens without consequence. But the habits formed around routine data handling determine what happens when something goes wrong, or when data ends up…
-
Recognising and Responding to a Security Incident
Read more: Recognising and Responding to a Security IncidentSecurity incidents happen. They happen to organisations with mature security programmes, experienced teams, and robust controls. The measure of a security posture is not only how well it prevents incidents but how effectively it responds when prevention falls short. Knowing what to do in the first moments after something goes wrong matters. Delayed or poorly…
-
When version control slips on MOD construction projects
Read more: When version control slips on MOD construction projectsDrawings standing still on construction projects is a very rare thing indeed. They move through constant cycles of issue, review, mark-up, and revision. On MOD programmes, that process involves multiple contractors and subcontractors, often working across different systems and environments, each with their own document practices and pace of delivery. Version control is straightforward in…
-
Account Security and Recovery
Read more: Account Security and RecoveryMost security guidance focuses on protecting accounts from being accessed by others. Less attention is placed upon what happens when you lose access yourself or when an attacker uses your own account recovery process against you. Account lockout is a more common experience than many people expect, and the recovery process, when not set up…
-
Working Securely When Travelling
Read more: Working Securely When TravellingTravel introduces a specific set of security risks that don’t exist, or exist in a more controlled form, in a normal working environment. You’re operating on unfamiliar networks, in public spaces, with devices that may be subject to inspection at borders, in locations where the people around you are unknown. The controls that protect you…
-
Why Backups Matter
Read more: Why Backups MatterBackups are one of the most consistently undervalued aspects of everyday security. Most people understand in principle that they should back their data up. Far fewer do so reliably, and fewer still have ever tested whether their backup actually works. The practical reality of not having a working backup becomes clear very quickly when something…
-
Collaboration challenges on MOD construction projects
Read more: Collaboration challenges on MOD construction projectsOn MOD construction projects, collaboration is constant. Drawings, RFIs, revisions, and mark-ups move between principal contractors, subcontractors, and specialist trades throughout the lifecycle of a programme. Decisions made in one part of the supply chain affect others. Coordination isn’t a phase of the project – it’s continuous. In theory, the process is structured. In practice,…
-
Phishing and Social Engineering
Read more: Phishing and Social EngineeringMost successful attacks don’t begin with sophisticated technical exploits. They begin with a message (an email, a text, a phone call), designed to make someone do something they wouldn’t otherwise do. Phishing and social engineering remain among the most effective methods available to attackers precisely because they target human judgement rather than technical defences. The…
-
Secure Authentication: Passwords, MFA and Passkeys
Read more: Secure Authentication: Passwords, MFA and PasskeysPasswords are still one of the most common ways systems are accessed, and one of the most common ways they’re compromised. Increasingly, they are also no longer the preferred option where stronger alternatives are available. Guidance from the National Cyber Security Centre and National Institute of Standards and Technology has shifted accordingly. Passkeys are now…
-
CYBERUK 2026 – what’s worth paying attention to
Read more: CYBERUK 2026 – what’s worth paying attention toEach year, CYBERUK sets the tone for how cyber security is expected to operate in practice – not just in policy terms, but in what organisations are actually held accountable for. This year’s theme, “The next decade: accelerating our cyber defence”, signals something that’s been building for a while. The conversation has moved on. The…
-
Security is a Product Decision: Why Secure by Design Starts with the Product Owner
Read more: Security is a Product Decision: Why Secure by Design Starts with the Product OwnerThe product owner is uniquely positioned to champion security from the start. POs sit across every workstream – business, delivery, design, engineering – bringing together stakeholders that rarely share the same room.
-
Logiq acquires Savient Ltd to strengthen capability and expand presence in the South-West
Read more: Logiq acquires Savient Ltd to strengthen capability and expand presence in the South-WestBristol, UK – 01 April 2026 – Logiq, a fast-growing, NCSC-assured UK cyber security consultancy and secure solutions provider, has acquired Savient Ltd, a technology and data specialist focused on delivery in highly regulated environments, strengthening its capability and further expanding its presence in the South-West. Founded in 2018, Logiq has grown rapidly to a…
-
Cybersecurity: A discipline in search of a definition
Read more: Cybersecurity: A discipline in search of a definitionDespite its increased profile and agreed importance, cybersecurity remains a concept without a single, unified meaning.
-
What is the NCSC Cyber Advisor Scheme and do you need it?
Read more: What is the NCSC Cyber Advisor Scheme and do you need it?If you are preparing for Cyber Essentials certification, you may have come across the term “Cyber Advisor”. It is easy to assume it is another form of certification, or perhaps a mandatory step in the process. It is neither. The Cyber Advisor scheme was developed by the National Cyber Security Centre and is delivered in…
-
Logiq Recognised as NCSC Assured Cyber Advisor Service Provider
Read more: Logiq Recognised as NCSC Assured Cyber Advisor Service ProviderBristol, UK – 23 February 2026 – Logiq, a rapidly growing UK cyber security consultancy and secure solutions specialist has been recognised as an Assured Service Provider under the UK Cyber Advisor scheme, enabling the organisation to deliver cyber security advice formally aligned to National Cyber Security Centre (NCSC) standards. The Cyber Advisor scheme was…
-
Logiq recognised as a Microsoft Solutions Partner for Security
Read more: Logiq recognised as a Microsoft Solutions Partner for SecurityLogiq has been recognised as a Microsoft Solutions Partner for Security, reflecting our experience designing, delivering and operating secure systems in highly regulated environments. The Solutions Partner designation is awarded to organisations that can demonstrate proven capability across Microsoft’s security portfolio, supported by certified expertise and evidence of real-world delivery. It recognises organisations that apply…
-
CSRB and the Reality of OT and ICS
Read more: CSRB and the Reality of OT and ICSThe Cyber Security & Resilience Bill is being talked about as a major update to the UK’s regulatory landscape, but its impact won’t be felt in policy documents or compliance dashboards. It will be felt in the quiet corners of essential services where technology, process and people collide — places where systems were never designed…
-
How DISX Supports CSMv4 Readiness
Read more: How DISX Supports CSMv4 ReadinessPreparing for the enhanced Cyber Security Model has become a significant focus for suppliers working with the Ministry of Defence. While the policy intent is straightforward — raising the bar for cyber resilience across defence programmes — the practical reality can feel messy, especially for organisations without dedicated security teams. Much of the initial effort…
-
Delivering OFFICIAL and OFFICIAL-SENSITIVE work in practice
Read more: Delivering OFFICIAL and OFFICIAL-SENSITIVE work in practiceThere is sometimes a tendency to treat the terms OFFICIAL and OFFICIAL-SENSITIVE as purely administrative labels, but for organisations working with the Ministry of Defence they represent a set of expectations about how information should be handled and what the working environment needs to look like. What the classifications mean in day-to-day delivery These classifications…
INSIGHTS
Clear, practical insight on the topics shaping secure and regulated work — from company news and everyday cyber guidance to deeper analysis of frameworks, delivery and emerging requirements.