It can be frustrating when you know you need to do something important, but you are too busy and slightly overwhelmed by what it might entail. We hear this all the time from individuals and organisations of all size. So to help with this I’ve listed where we think you should begin in cyber security, depending on what size organisation you are.
Individuals & Partnerships
As well as utilising a password manager (see our previous article on this topic) we would recommend using multi-factor authentication (MFA) for every account you can. This is especially true for your email and bank accounts. Our recommended tool for MFA is either Microsoft Authenticator or Authy by Twilio.
Micro Business (<10 Employees)
First we would recommend finding out where you are already with cyber security, by taking a quick 5 min assessment. After that we recommend starting to think about and implement some of the further steps recommend by the National Centre for Cyber Security (NCSC). They have a page for sole traders and small teams that would be a great place to start. The effort put in here will not only make you a safer and stronger team, but could also lead to accreditation with the Cyber Essentials scheme.
Small to Medium Enterprises (SME)
The National Centre for Cyber Security (NCSC) produce a really simple yet effective Small Business Guide. It is easy to understand, regardless of your role in or expertise. This should be the first step towards looking at Cyber Essentials Plus certification, which you can either submit yourself for (or we can help as well)
Large Enterprise and Corporate (Over 250 Employees)
Here things get a little more serious. Starting at the top of your organisation, the NCSC produce a very good board kit, as well as advice on risk assessment and even free employee training. We specialise in these size organisations, so please reach out to discuss with us how we can help you enhance cyber security in your organisation.
