.png?width=55&height=41&name=conosco_icon_lightbg%20(1).png "conosco_icon_lightbg (1)"){kind=icon}
Pen testing with assurance: find it, fix it, prove it
A penetration test should offer more than just a report; it should provide actionable insights for improving security. While it's essential to obtain findings that identify vulnerabilities in web applications, cloud platforms, networks, mobile apps, Application Programming Interfaces (APIs), and int …
Conosco is named one of The Sunday Times Best Places to Work 2026
We’ve got some brilliant news to share. Conosco has been named one of The Sunday Times Best Places to Work 2026, recognised in the small organisation category. For a business heading towards its 25th year, this is a huge moment. Not because it looks good on a badge, although it definitely does, but …
Why we’re beginning our Assurix certification journey
Trust in technology providers has to mean more than a good relationship, a fast response time or a polished service review.
AI Governance That Wins Business
Why Regulation, AI DLP and ISO 42001 Are Commercial Advantages AI usage has already spread beyond formal approval as teams are using generative tools to accelerate work. Software vendors are embedding AI into platforms that were signed off on years ago, data is moving into models, outputs are influe …
What is ISO42001?
Artificial intelligence (AI) has seamlessly woven itself into the fabric of most organisations, often emerging as a practical tool rather than through a deliberate strategy. Technologies are usually adopted based on their immediate utility, rather than being subject to formal governance frameworks. …
AI Governance may not be sexy, but it needs addressing
AI is already out of control in most organisations. Not because the technology is dangerous, but because leadership has allowed it to spread without ownership, rules, or visibility. Staff are pasting sensitive information into ChatGPT, Claude, Perplexity, Grok, and whatever comes next because it is …
The AI Problem
Artificial intelligence (AI) is no longer just a theoretical concept; it's now an integral part of our daily work lives. In organisations across the UK, people are engaging with a variety of AI tools, including copilots, chatbots, coding assistants, automated workflow solutions, and decision support …
Passkeys in the real world
Passwords represent one of the weakest forms of security that we continue to rely on. They are easy to forget, easy to steal, and costly to manage. Every phishing breach, every instance of credential stuffing, and every password reset request serves as a reminder of a broken system we have come to a …
How social engineering actually breaks a business
European Cybersecurity Month highlights social engineering for good reason. Attacks now target people more than code. Even a cloned voice or a routine approval process can lead to failures, despite having good controls in place. These issues can be avoided only if leadership recognises social engine …
Penetration testing for first-timers: how to know if you need one
Most first Penetration Testing projects are bought for the wrong reason. A client asks for a certificate, cyber insurance tightens its wording, or a board member reads about an incident and wants reassurance by quarter-end. Penetration Testing is most effective when it is risk-driven and well-scoped …
Long read: what the BBC got right, and where leaders must push further
This long-form analysis responds to the BBC’s investigation, “The true cost of cyber attacks – and the business weak spots that allow them to happen,” examining the incidents that halted Jaguar Land Rover, disrupted Marks & Spencer and Co-op, and exposed the fragility of the UK’s critical supply …
When one portfolio company gets hacked, you all pay.
Portfolio companies don’t face a single cyber risk. They face a networked risk. A compromise at one portfolio company often exposes shared vendors, credentials, and processes that repeat across the rest of the fund. That’s aggregation. It’s why ransomware and supply-chain attacks scale so efficientl …
.png?width=220&height=165&name=image%20(4).png)
