One question from the audience that we didn't have time to cover during Greg Slayton and Nick Frost's presentation: Is the risk-based approach about agility in responding to what is on the mind of business leaders vs ticking a box for regulators?We'd love to hear your thoughts on the above.

Plenty of food for thought within this morning's panel session. Please get involved and discuss the following:- How do I avoid becoming a victim of a phishing scam?- what checks would you advise to do to ensure working from home/remotely is safe at all times?- Should a company increase its training around phishing due to working from home becoming the new normal?- Do you think bigger companies are more susceptible compared to smaller companies or the other way round?- What are your views on the risks and vulnerabilities around remote team meetings software platforms?- what steps do you suggest a company should follow to identify Cyber Security risks?- Many say cloud is more secure than internal server domains.. you seem to disagree?

Unfortunately we didn't have time to answer all of the questions raised in Paul's presentation. But don't let that stop you discussing them further here:- What are the new trends in research on cyber crime?- with tech changing so often should organisations have specific cyber risk trained professionals/teams or should it be part of all employee knowledge?- In your experience, do institutions actually share intelligence on cyber crime/hacking attempts with other companies? - Is the risk of cyber criminal attacks on big data database systems containing personal data of social media portal users growing ?- How do we protect sensitive information handled and stored by third-party vendors? - How do we manage the cyber risk of increased targeting of home working?Please feel free to discuss these, and any other questions you might have, here in the Community Zone