Cyber Security is not just about IT…
There is still a huge perception that cyber security is the responsibility of your IT Team. Yes, the IT Team has a very important part to play to make sure your technology remains up to date with the latest software and security patches, but it is important that everyone understands that it is so much more. Ensuring your people can spot the malicious emails and have been trained accordingly and mixed with good processes that you can follow when responding to an incident is just as important.
Every business should have at least two Cyber Security risks identified and where possible mitigated…
Security risks should always be visible at the highest level of every business. The potential operational, reputational and financial impact of a cyber-attack can have far reaching effects for your business. Every business should discuss and mitigate at least two cyber risks: The impact of a data breach and the impact of a Ransomware attack. These are the most common forms of attacks we have seen over the last few years and should be discussed and mapped out by every business.
It doesn’t have to be a major investment…
Investing does not have to break the bank, regardless of the size of the company. Focusing on areas of concern rather than purchasing the latest technology is a more robust way forward. Working with cyber security companies to help develop a cyber roadmap and outsourcing key services will be more cost effective than trying to grow your own team of cyber professionals.
There is a major difference between IT Security and Cyber Security…
Good IT security can often provide a robust defence against the cyber threat. With end-point protection, Anti-Virus, Firewalls and email protection companies will feel that they are adequately secure. Cyber Security is looking for that ‘unknown, unknown’ or that ‘needle in the haystack’ where on the face of it everything seems protected, but it is the tradecraft and skills of the cyber attacker that need to be identified through the analysis of the Cyber professional.
Cyber Insurance does not mean you are safe against the Cyber Threat…
Having cyber insurance in place is not a substitute for good cyber defence and practices. It is a safeguard, but often companies don’t invest in cyber security as they believe they will be covered by their insurance. Investing in cyber security will help to reduce insurance premiums and hopefully reduce the chance of making a claim.
Dave Woodfine is the Managing Director and Founder of Cyber Security Associates Limited, a Gloucester based company that provides a range of consultancy and managed services. The team of CSA cyber professionals provide around the clock detection and protection against the cyber threat and will help companies recover when they fall victim to a cyber-attack. For more information on their services visit their website.
Highlander UK have added to their skill set via their acquisition, by FluidOne, of Cyber Security Associates, an award-winning company built on years of military and government cyber experience.