Why do organisations keep getting breached, even when security budgets are rising and tools are improving?

In this episode of Ctrl Alt Disrupt, Abbie Dewhurst is joined by cybersecurity expert Greg van der Gaast, a former hacker turned security advisor, to explore why traditional approaches to cybersecurity are still failing organisations.

Despite increased investment, awareness, and tooling, breaches continue to happen, often through vulnerabilities that were already identified and should have been fixed. So what’s really going wrong?

Greg argues the issue isn’t just technical, it’s organisational. Security failures are often the result of how work gets done: process gaps, operational pressure, silos, and decisions that prioritise speed over safety.

Through a real-world case study, the episode explores how one organisation was fully compromised within hours during a penetration test and what it revealed about the deeper structural issues behind modern cyber risk.

In this episode:

• Why cybersecurity spending isn’t reducing breaches
• The uncomfortable truth behind “known” vulnerabilities
• How organisational processes create security risk
• Why most security problems are symptoms, not causes
• What changes when you fix the foundation instead of adding more tools

If you work in IT or cybersecurity and feel like you’re constantly firefighting despite doing everything “right,” this episode challenges that assumption at its core.

Fore more information check out https://dtpgroup.co.uk/

Follow us on linkedin https://www.linkedin.com/company/dtp-group