Insights from Auravere

Artificial Intelligence | Cyber Risk | Information Security | Nexwyre | Security Leadership

The Vulnerability Reckoning. What Mythos tells us about the Security landscape we have built.
ByMatt Mason 15 April 202615 April 2026

We have always known the bugs were there. Not the ones we found and patched, the ones nobody had found yet. The ones sitting quietly in code that was written before some of your security team were born, running in systems that have never been seriously tested, doing their job reliably enough that nobody thought…

Read More The Vulnerability Reckoning. What Mythos tells us about the Security landscape we have built.
Cyber Awareness | Security Culture

It is still Coffee. Security Culture and the Art of Getting It Wrong on the Way to Getting It Right.
ByMatt Mason 8 April 20268 April 2026

I got a new coffee machine yesterday. Four espressos later, nothing was quite right and I did not know why. By morning I had worked it out. Two fundamental errors, hiding underneath everything I had been adjusting. There is a security culture lesson in there and it is a good one.

Read More It is still Coffee. Security Culture and the Art of Getting It Wrong on the Way to Getting It Right.
Data Protection | GDPR | Governance

Eight Years of GDPR. Did Anything Actually Change?
ByMatt Mason 1 April 202631 March 2026

I started writing this post in the summer of 2018, about two months after GDPR came into force. Life got in the way and I never finished it. Reading it back now, what strikes me is not how much has changed. It is how much has not. So let me finish what I started, with…

Read More Eight Years of GDPR. Did Anything Actually Change?
Governance

Who Owns the Risk? The Accountability Gap in Security and Governance
ByMatt Mason 25 March 2026

In security and governance, the biggest risk is often not the threat itself. It is the absence of anyone willing to own the decision about what to do about it. After more than two decades working in information security across complex organisations, the pattern I see most consistently is not a lack of capability. It…

Read More Who Owns the Risk? The Accountability Gap in Security and Governance
GDPR | Regulatory

An Approach to GDPR readiness for your business
ByMatt Mason 6 July 201722 March 2026

Following on from my previous article regarding the General Data Protection Regulation (GDPR) titled GDPR and what it means to you (Part 1), we’ll pick up where we left off and discuss some important areas to focus on, this is by no means a definitive list but will get you started. There are numerous methods to approach…

Read More An Approach to GDPR readiness for your business
GDPR | Regulatory

GDPR and what it means to you (Part 2)
ByMatt Mason 26 June 201722 March 2026

Following on from my previous article regarding the General Data Protection Regulation (GDPR) titled GDPR and what it means to you (Part 1), we’ll pick up where we left off and discuss some important areas to focus on, this is by no means a definitive list but will get you started. There are numerous methods to approach…

Read More GDPR and what it means to you (Part 2)
GDPR | Regulatory

GDPR and what it means to you (Part 1)
ByMatt Mason 4 June 2017

As you’ll probably know by now, the European General Directive known as the General Data Protection Regulation (Regulation (EU) 2016/679) comes into force across on the 25th May 2018 by which time all EU member states must have implemented the regulation in their territory. As this is a regulation, it’s a Law that cannot be ignored or…

Read More GDPR and what it means to you (Part 1)