A major new British Standard [BS 31111] is in development to help senior executives and risk managers improve their cyber risk management and build the cyber resilience of their organizations.
Over the past year, the BSI Risk Management Committee has been working on developing new guidance that aims to help top executives better understand and manage the technology risks to their organizations.
An Introduction to Cyber Risk and the Cyber Essentials Scheme - Video
This is a short 5 minute video that rather light heartedly provides a basic introduction to Cyber Risk. It isn't technical and aims to help build awareness of Cyber Risk has evolved and introduces the UK Cyber Essentials Scheme.
If you would like to know more about our work covering Cyber Risk then get in touch.
You can also find out more about the special Cyber Risk and Insurance Forum by clicking on the link in the menu bar.
Future Learn has launched 3 new free cyber security online training courses, funded by the National Cyber Security Programme.
The courses are aimed at all levels, from young people through to existing employees, and represent an excellent opportunity to develop skills in the IA arena.
Department of Business, Innovation & Skills Minister, Right Hon David Willetts MP, has announced the certification framework for Cyber Essentials, the governments new initiative aimed at creating a minimum expected capability for cyber security.
The government has extended the Innovation Voucher scheme that supports SMEs, entrepreneurs and early stage start-ups by implementing or improving cyber security.
The scheme provides flexibility and allows firms to choose from a ange of approved suppliers. Successful applicants will receive up to £5000 from the Innovation Scheme.
As part of the UK government's long-term strategy to address the increasing threats around cyber risk HMG has announced its Cyber Essentials Scheme.
The scheme identifies and focuses on five principal areas that businesses of all types and sizes must consider as "the essential" foundation of their cyber security.
Sutcliffe & Co are independent insurance brokers specialising in the UK SME sector.Sutcliffe & Co were one of the earliest SME brokers to start actively promoting cyber insurance and were the first insurance business in the UK to achieve the Government’s Cyber Essentials certification and IASME certification.
‘solitary, poor, nasty, brutish, and short; is not a description of the career of the average cyber security officer. It’s a treatise on a life in a constant state of war by Thomas Hobbes (1588 – 1679).
The response received from most small businesses when we talk about the threat that they expose themselves to simply by connecting to the Internet, is normally along the lines of, “Oh we’ve got that covered”. When we’re met with such a blasé attitude, we sense some sport and probe a little further.
The term ‘covered’ turns out to be an interesting phenomenon, as connecting to the Internet can be likened to waking up one morning and finding a rabid dog sitting on your bed - if you’re lucky you’ll be fine, but there’s a very strong probability of things going horribly wrong, resulting in a potentially deadly infection. For most, a more technical definition of ‘covered’ is probably the router provided by their Internet service provider (ISP) and some free antivirus software.
Digital Economy Minister Ed Vaizey has announced a new free online training course to help members of the legal and accountancy professions develop the skills they need to protect themselves and their clients from cyber-attacks.
Developed by government and industry, the on-line training will also enable lawyers and accountants to advise their clients on the cyber risks to their business. This will help UK businesses protect themselves from information breaches and other threats that could potentially cost them millions of pounds.
Reports are emerging of another credit card security breach this time concerning the Office supplies firm Staples.
They are the latest in a growing list of familiar retail names to have had their security breached. The breach came to light following the detection of fraud patterns across the North Eastern United States.
Wm. Morrison, one of the UK's largest supermarket chains, has had the details of more than 100,000 staff stolen. While far fewer people have been affected by this data theft than in others recently reported.
The theft covers the payroll records of staff employed by the company and the firm has stated no customer records have been compromised.
Feedback is needed from industry on the first draft of the Cyber Hygiene Profile developed by BIS and intended to identify the basic cyber controls that should be present in business.
The current draft can be viewed and comments submitted through the BSI’s Draft Review System and the review will close on the 16th March, 2014.
Connecting Cyber & Information Security with Business at the Top
Each month seems to bring us a new report showing that business needs to be doing more on the threats to their IT. Almost daily there are media reports of companies systems being breached by hackers, of data being lost and increasingly sophisticated criminal activity. The Internet has become ever more part of our business processes around the world bringing new dimensions of communication, information sharing and performance. Our companies IT systems are critical, not just to business performance, but to organisational survival.
In March 2013, the UK Department for Business, Innovation and Skills issued a “Call for Views and Evidence” that built on the commitments made in the 2011 Cyber Security Strategy published by government.
The Call for Evidence focused on the intention of government to encourage the adoption of industry led standards that can be used by organisations to improve the management of cyber risk. The particular focus of this work stream, that is part of a series of connected developments across business and government, was centred on the needs of SME companies.
A major new British Standard [BS 31111] is in development to help senior executives and risk managers improve their cyber risk management and build the cyber resilience of their organizations.
.png)
Digital Economy Minister Ed Vaizey has announced a new free online training course to help members of the legal and accountancy professions develop the skills they need to protect themselves and their clients from cyber-attacks.
Reports are emerging of another credit card security breach this time concerning the Office supplies firm Staples.
