Risk and Resilience Blog

Welcome to the Cambridge Risk Solutions risk and resilience blog — practical insights on business continuity, crisis management, information security and more, written by people who work in the field every day.
Relay baton dropped mid-handover, illustrating a failed third-party contract handover

What the Sats Marking Crisis Tells Us About Third-Party Contract Handovers

What the Sats Marking Crisis Tells Us About Third-Party Contract Handovers Every July, Year 6 pupils across England find out how they did in their ...
Read More →
what makes a supplier risk assessment

What Makes a Supplier (And When a Tool Is Not Simply a Tool)

What Makes a Supplier (And When a Tool Is Not Simply a Tool) Every organisation I’ve worked with over the years has a supplier list. ...
Read More →
Fire extinguisher behind break glass panel in an office corridor — the emergency plan nobody reaches for

Your Business Continuity Plan Exists. So Why Did Nobody Use It?

In my experience, organisations that come to me for consultancy often share a similar story. They had a business continuity plan in place, sometimes one ...
Read More →
A gloved hand on a computer mouse next to a keyboard, with a patient record displayed on a hospital computer screen in the background

The NHS doesn’t have a data security problem. It has a culture problem.

The NHS doesn’t have a data security problem. It has a culture problem. This week, Cambridge University Hospitals referred itself to the Information Commissioner’s Office ...
Read More →
Aerial view of a stone architectural maze with a clear navy blue path marked through it, representing navigation through complex ISO standards

ISO Spaghetti: Why the Standards Landscape Is Confusing (and What to Do About It)

The five standards worth knowing about ISO Spaghetti: Why the Standards Landscape Is Confusing (and What to Do About It) I have lost count of ...
Read More →
Aerial view of a port at dusk with a network of connected transport and logistics icons overlaid, illustrating supply chain interdependency.

The cyber law your organisation probably doesn’t need to worry about — and why that might be exactly the problem

The cyber law your organisation probably doesn’t need to worry about — and why that might be exactly the problem The Cyber Security and Resilience ...
Read More →

Get In Touch

Whether you're starting your Business Continuity journey or looking to enhance your existing risk framework, we're here to help. Get in touch today for a no-obligation conversation with our expert team.