Cybersecurity Research, Publications & Case Studies

About

A Risk Management Tool for all businesses

by S.Choudhuri | February 23, 2025 | GRC | 0 Comments

Authors: S.Choudhuri Category: Risk & Compliance Date: 23 Feb  2025 I built a suite of Risk Management tools to help organisations identify, quantify and prioritise security risks, then choose cost-effective treatments. The suite includes a Quantitative Risk...

Read Article

Case Study: EU AI Act Implementation for a Mid‑Size SaaS Startup

by S.Choudhuri | February 4, 2026 | Case Studies, GRC | 0 Comments

Executive Summary A mid‑size SaaS provider that delivers AI‑driven business‑analytics tools had to align its product line with the EU Artificial Intelligence Act (EU AI Act) before entering the European market. The company, operating with a lean compliance team, faced...

Read Article

Case Study: Implementing ISO 27001, GDPR, and NIS 2 for a Mid‑Size Financial Services Client

by S.Choudhuri | February 4, 2026 | Case Studies, GRC | 0 Comments

Background A mid‑size fintech firm providing solutions for small‑to‑medium enterprises sought to align its information‑security posture with international standards and EU regulatory mandates. The client needed to demonstrate compliance with ISO 27001:2022, the...

Read Article

Case Study: Tracking Adversary Reconnaissance Behavior

by S.Choudhuri | January 29, 2026 | Case Studies | 0 Comments

Investigating Cyber Intrusions Through Adversary ReconExecutive SummaryGoal: Provide a step‑by‑step methodology for analyzing, classifying, and evaluating threat reports, campaigns, and adversary behavior, with a focus on the reconnaissance phase.Core...

Read Article

A Practical Implementation Guide to NCA ECC-2 and SAMA Cybersecurity Frameworks

GRC

A Practical Implementation Guide to NCA ECC-2 and SAMA Cybersecurity Frameworks1.0 The Strategic Imperative of Cybersecurity Compliance in Saudi ArabiaAs the Kingdom of Saudi Arabia accelerates its ambitious Vision 2030 objectives, the digital landscape is undergoing...

Integrating Global Security Standards (ISO 27001, NIST, SOC 2, PCI DSS, HIPAA, HITRUST, NIS 2)

GRC

Turning the Compliance Framework into a Strategic Asset The present compliance landscape presents a significant challenge for global organizations. It is a combination of a complex and fragmented "compliance framework," where companies must simultaneously navigate a...

Aligning GDPR, ISO 27001, and NIS 2: An Optimized Approach for IT Security Risk Compliance

GRC

Authors: S.Choudhuri Category: Risk & Compliance Date: 3 July 2025 Keywords: GDPR, ISO 27001, NIS 2, certification, information security management, data protection, regulatory alignment Abstract The European Union’s General Data Protection Regulation (GDPR), the...

« Older Entries

Next Entries »

Cybersecurity Research, Publications & Case Studies

A Risk Management Tool for all businesses

Case Study: EU AI Act Implementation for a Mid‑Size SaaS Startup

Case Study: Implementing ISO 27001, GDPR, and NIS 2 for a Mid‑Size Financial Services Client

Case Study: Tracking Adversary Reconnaissance Behavior

A Practical Implementation Guide to NCA ECC-2 and SAMA Cybersecurity Frameworks

Integrating Global Security Standards (ISO 27001, NIST, SOC 2, PCI DSS, HIPAA, HITRUST, NIS 2)

Aligning GDPR, ISO 27001, and NIS 2: An Optimized Approach for IT Security Risk Compliance

Case Study: Implementing ISO 27001, GDPR, and NIS 2 for a Mid‑Size Financial Services Client

Aligning GDPR, ISO 27001, and NIS 2: An Optimized Approach for IT Security Risk Compliance