A robust backup strategy is vital to protect data, finances, reputation and legal compliance.
Knowing how you are going to maintain ‘business as usual’ is vital.
Take a systematic approach to security. Start with an effective business security plan.
Having cyber certification can bring a number of important benefits to any organisation.
Have access to a cyber and information security support specialist.
You should have a process for managing and reporting security breaches.
Confidential data and communications should be encrypted to render it useless if it falls into the wrong hands.
Preventing your data from loss or falling into the wrong hands should be a key part of your IT strategy.
If you store personal information on clients, employees or other individuals, you must comply with data protection.
Dispose of computers and mobile devices correctly to avoid information being accessed - even if you thought it was deleted.
Be aware of the risks in your organisation, and how to identify and prevent fraud.
If you process the personal data of EU citizens, this applies to you.
Have a framework for the governance of cyber and information security.
It is vital to manage who has access to which information held by your business.
Be aware of the risks you face as a prerequisite to having an information security strategy.
Find a supplier who can demonstrate expertise in providing security advice and resolution.
Use & protection of strong passwords is vital in order to protect security and identity.
Social engineering is the route to many types of crime including fraud and identity theft - involving manipulation or deceit.
Convenience and efficiency is balanced by a degree of risk, which must be minimised with staff policies.
Not observing good practice or having robust systems in place could jeopardise the security of organisations up and down the supply chain.
It is vital to protect your own and any customer data hosted or stored in the cloud.
Redundant systems & services should be thoroughly decommissioned to minimise security risks.
In any organisation where more than one person has access to a computer or network, it is necessary to set up user accounts.
Microsoft ceased support for Windows Server 2003 & Small Business Server 2003 operating systems in 2015.
Microsoft ceased support for XP in 2014 meaning no updates, patches, fixes or Microsoft Security Essentials.