Oops! Something went wrong while submitting the form.
The 12 Steps to Cyber Security Report, issued by the National Cyber Security Centre, breaks down and outlines the steps needed for companies to implement an effective cybersecurity system. The report recognises that with an increased reliance on technology comes an increased need for preparation in the event of an attack.
This report was compiled in the knowledge of the high revenue that cybercrime generates and how, as stated by The Economist, “the world’s most valuable resource is no longer oil, but data”.
The 12 Steps to Cyber Security Report tackles the issue of cybersecurity by breaking it down into 12 manageable steps. The NCSC recommends that a new step is implemented each month. The recommended 12 Steps are as follows:
12 Steps to Effective Cyber Security
1: Establish governance and organisation:
Ensure that the company has the support of its senior management
Remember: With the likelihood of attacks increasing, resilience is key to a company’s survival
10: Implement additional automated protections:
Note: This step sets out to upgrade the basic protective measures outlined in step 6
Implement technologies such as Intrusion Prevention Systems and Web Application Firewalls
Establish a cyber risk reporting programme to liaise between the IT department and senior management
11: Challenge and test regularly:
Ensure to regularly test the strength of your organisation
Perform pen-testing etc and encourage proactive hunting for threat actors
12: Create a cyber risk management lifecycle:
Always look for ways to improve the programme the company has in place
Remember: As cyber risks evolve, it is important to reflect on and improve your company’s current cyber risk management programme
Following these 12 steps will transform a poor cybersecurity system into one not only able to recover from attacks but capable of proactively monitoring and eliminating potential threats. With global cybercrime increasing, it is imperative that every company ensures it takes appropriate to protect its business.