As we were the first business in the Highlands and Islands that had achieved the UK government backed Cyber Essentials scheme badge for cyber security, we are the first needing to complete the annual renewal process. We are very pleased to announce that we have achieved Cyber Essentials again with this demonstrating the level of security that we have in place within our IT systems.
While writing up a report this week for a client for their Cyber Security strategy I took a call from a UK number with a very kind and polite person from Microsoft calling me to assist me with a problem that my computer is suffering from. I knew very quickly that this was a scam but I wanted to see how mature this was so I put some time into this but also playing hard to get by constantly questioning what they were asking me to do and asking if it was a scam to give them a chance to end the call.
We have all seen the many recent news items with high profile and large business related Cyber Security attacks but when talking with clients of all sizes and across all sectors, they all share a concern for the threat at varying levels. When talking further with these clients, they generally feel confused as to what they can do to protect themselves but commonly feel that ‘IT have it covered’ so they are protected and as a result do not need to do anything about managing this risk.
Insurers need to find a better way to assess cyber risk
Due to the ever increasing utilisation of digital technology and the volume of data being processed and stored electronically, every business needs to become much more aware of the risks that they face. We have all heard of the high profile data leakages by Sony and Ashley Madison but how many data leakage events have occurred in the last 12 months that we have not heard about? In both cases it is thought that the leakage was caused through a socially engineered attack or weak internal systems control but this is now outside the interest of mainstream media and forgotten about. It is often the case that the reputational costs of a data breach are higher than the monetary value of the data leaked and, as a result, businesses should not focus purely on data that has a perceived high value.
We are very pleased to announce that we are the first business in the Highlands and Islands that has achieved the UK government backed Cyber Essentials scheme badge for cyber security. The Cyber Essentials scheme was released in June 2014 and today just over 1,000 businesses have managed to achieve this accreditation and given the very recent media coverage of the Talk Talk data breach it is ever more important that UK businesses implement controls and policies to protect against this threat. In addition to achieving Cyber Essentials, we also achieve ACE Practitioner status and are able to offer assistance to businesses that wish to achieve Cyber Essentials.