Thomas Kranz

Tom’s career has spanned over 30 years, as a consultant within Cybersecurity and IT. After a successful career helping UK Government departments and FTSE100 clients, as well as running his own consultancy, Tom now advises and supports organisations on their Cybersecurity challenges. Tom is also a member of the Forbes Technology Council.

Tom lives with his partner in Italy, where they rehabilitate their collection of rescue dogs and cats, as well as managing their many opinionated ducks - and a pet wild boar.

Now available, Tom's new book - Making Sense of Cybersecurity from Manning.

Forbes • 6th September 2022

Council Post: 15 Smart Ways Retail Businesses Should Be Using AI

Retailers may not think of themselves as being in the business of managing data, but in many ways, they are. No other industry has more direct access to firsthand information about its customers through their behavior—what they like and what they don’t like, what they need and when they need it, what makes them happy and what frustrates them, and more.

Data Science Salon • 25th August 2022

DSS Break: Using Data Science for Cybersecurity

On today’s DSSBreak I sat down with Tom Kranz, Head of Cybersecurity at RDX Works Ltd. Thomas has over 30 years of experience in consulting and financial services and published two books focused on cybersecurity and data-driven cybersecurity in particular. Today, he’ll tell us more about what AI and machine learning can do to protect systems and information from malicious attacks.

LinkedIn • 12th August 2021

Accenture, ransomware, and ambulance chasers

The Lockbit 2.0 ransomware gang have been stepping up their game over the last year, and yesterday they claimed a big scalp: Accenture. With a haul of 6TB of data, and clearly wanting to pile on the pressure for a pay-out, the Lockbit crew went public and gave Accenture only 7 hours to pay up, instead of the usual couple of days.

LeMagIT • 7th August 2020

Pourquoi la cybersécurité doit être une priorité du conseil d’administration

Cet article se trouve également dans ce contenu premium en téléchargement : Il est de plus en plus évident que les cyberattaques ciblent désormais délibérément dirigeants et membres des conseils d’administration. Ce qui montre que les assaillants pensent trouver là des individus particulièrement précieux, mais tout aussi vulnérables.

Security Magazine • 10th July 2020

Is There Really a Cyber Security Skills Shortage

Companies are struggling to find cybersecurity talent, and roles remain unfilled for months at a time. But is there really a lack of qualified candidates on the market? Is the problem with the lack of skills - or are we inadvertently limiting the talent pool before we even post the job spec?

ITProPortal • 22nd June 2020

Why contact tracing apps don't work, and why the UK's NHSX app will fail

People are fed up of lockdown. Families want to get out, people need to earn money, and employers want their teams back at work. Contact tracing apps are being floated as the solution to easing the current lockdown - but will they work? NCSC (the partnership arm of GCHQ) has been busy reassuring people that the NHSX app is secure, useful, and that everyone should do their part and install it. But is that actually the case? The first problem is that the development team have decided to not use

ITPro Portal • 4th October 2019

Why interception of WhatsApp and Facebook Messenger isn't just flawed, it's dangerous

There have been a number of articles in the press recently on how the UK government has agreed with social media platforms like Whatsapp and Facebook to share user's encrypted messages with police. While it's true that GCHQ and various civil servants have been trying to push for interception capabilities on these platforms for a while now, despite the headlines, nothing has actually been agreed. This is down to two main problems: that encryption doesn't work that way, and that the proposal is da

LinkedIn • 30th August 2019

Building your career in Cyber Security: Certifications

"The long term benefits of sunscreen have been proved by scientists, whereas the rest of my advice has no basis more reliable than my own meandering experience. I will dispense this advice, now." Following on from my previous article about getting started in Cyber Security, I want to move on to certifications. I've interviewed a lot of people over the years. A lot. And then I've had to built out and lead teams for various clients with the people I interviewed and hired. Certifications are a rec

LinkedIn • 25th August 2019

How do I get into Cyber Security?

Along with "You can't say that" and "Hey, how'd you get in here?", one of the things I've been hearing from people recently is "How do I get a career in Cyber Security?" I thought I'd throw my notes from those conversations in a sort of Liber Primus for those interested in moving into Cyber Security - either as a side hustle or a career. First: what is it you actually want? I need to be honest - if you're in it for the money, there's much better options out there. Work in finance. Become a pol

Medium • 2nd August 2019

Google do not care about the user.

Google had previously tried to break usability on the web by removing the “www.” and “http(s)://” parts of the URL displaying in Chrome. Facing a strong backlash from users, they quietly shelved the plans. Now they are trying again, with the same nonsense excuses for it: “ The Chrome team values the simplicity, usability, and security of UI surfaces. To make URLs easier to read and understand, and to remove distractions from the registrable domain, we will hide URL components that are irrelevan

Medium • 9th July 2019

The ICO’s £183m GDPR fine for British Airways is the wrong thing to do

There’s lots of flag waving about how the ICO finally has some teeth, and how GDPR is going to keep companies on their toes from now on. Nothing will change. GDPR will have no impact on cyber security apart from employing a lot more auditors, with even more ineffectual checklists. The ICO’s “record breaking fine” will result in zero improvements in cyber security. Companies should be punished financially for having weak security when handling customer’s data — but it’s the executive team who s

Hiscox London Market • 7th May 2019

All the gear and no idea

Support when you need it, where you need it. Even with high-tech security in place, many companies still suffer cyber attacks due to simple set-up blunders. Most companies that suffer a cyber attack believed it would never happen to them. What makes it even harder to understand is the costly, cutting-edge security they had in place to deter hackers. But, these strong defences turn out to be a cyber Maginot Line if they’re not activated or deployed properly – ineffective because they could be e

Professional Security Magazine • 1st May 2019

Ways to close the digital skills gap in cyber

Tom Kranz, Director of Cyber Lab at 6point6, a technology consultancy, writes that the digital skills shortage is a permanent thorn in the cyber industry’s side that needs to be tackled now before it’s left to fester any longer and cause real long term damage. Despite being exaggerated by many as a full-blown crisis, the talent shortage is actually something that needs properly addressing, not hyperbole. With hackers ramping up attacks and developing increasingly sophisticated tools and methods

Computer Weekly • 10th April 2019

Why cyber security needs to be prioritised at board level

There is growing evidence that cyber attacks are now deliberately targeting executives and board members – not businesses themselves – which shows that attackers believe this group is particularly vulnerable as well as valuable. More must be done to raise awareness of potential cyber threats at board level, as well as supporting businesses in developing a strategy that offers solutions to combat potential weaknesses in a company. Typically, hackers attack companies and their employees to steal

SC Magazine • 8th April 2019

Why companies can't treat cyber as a bolt-on

To access this content please sign in or register below for free

Computer Weekly • 20th February 2019

Breaking the chains: How FUD is holding the cyber sector hostage

Fear, uncertainty and doubt (FUD) has become an ever-looming cloud over the cyber sector in recent years as companies and suppliers pounce on the opportunity to capitalise on this rhetoric and peddle their wares to fearful customers. To misquote the age-old advertising maxim: fear sells. Of course, the big problem with this is that customers and, businesses – people – become immune to the constant avalanche of outlandish claims and equally outlandish fears. “FUD fatigue” is something that, unfo

Compare the Cloud • 11th January 2019

Being Successful in Cyber Security

Cybersecurity can often seem like a murky world of espionage and counter-espionage; where men in blacked out vans kidnap carefully chosen nerds from the streets of the country’s small towns to keep us safe from those pesky bad guys. However, to succeed in the world of cyber security you do not require a specific set of skills as the Liam Neeson of Taken 1, 2 and 3 will have you believe. This does beg the question of what do cybersecurity experts look for when hiring the next generation of keyboa

Load More Articles