Cyber Essentials

Keeping your company secure from cyber threats

Cyberattack is a very real threat to businesses worldwide and is on the rise as millions of people continue to work from home. Data Loss is perceived as the Highest cost of a cyber-attack, followed closely by financial losses and reputational damage.
Any company can be vulnerable but there are some steps you, as an employee, can take to protect your business and job. Within this website are many helpful tips for being cyber safe, but remember that each company, has its own policies and procedures to protect itself.

Protecting The Top Management & C-Executives from Cyber Risk.

Cyber criminals are targeting C-suite executives and leadership officials for gaining access to critical corporate systems and get critical information through them. The C-Suite and leadership executives are targets for threat actors for the following reasons: Gap in Cyber security knowledge, holding access to company's critical information, frequent usage of BYOD devices with policy exceptions, which enables the attackers to extort C-Suites for huge money.

Types of threats faced by Leadership/Management professionals.

  • Spear phishing emails

  • Credential theft

  • Critical data breach & exfiltration.

  • Ransomware.

Commonly Recommended Best Practices for protection of C-Suite/ Leaders against Cyber Threats:

  • For C-suites that are non-technical, use passwords and passcodes that are meeting with the strong password criteria but easy to remember. Example: basic16: “Password must have at least 16 characters”, Executive users found basic16 passwords both easier to create and easier to remember. More usability AND more security!

  • Enable MFA on your Executive's devices like BYOD e.g., computer, mobile or tablets.

  • Check for software's installed on their computer, tablet, and other devices on a regular basis and delete any unused programs or software.

  • Advise them to keep an eye on their account's accounts for any fraudulent usage or odd behavior, especially financial accounts.

  • Convey cautious behavior with risks of connecting their devices to untrusted networks, such as free Wi-Fi or in airports and hotels.

  • Install an antivirus software or an EDR on their corporate mobile device (tab or desktop) exist so you can have a look out and scan for viruses on a regular basis and remove any infections as soon as possible and never disable the firewall or antivirus on their devices.

  • Make regular backups of their corporate files on an encrypted external drive.

  • Advise them to invest in a mobile phone, computer or tablets which supports strong encryption and security.

  • Educate them about using separate passwords for 3rd party websites like hotel booking or other sites.

  • Always encrypt the password if saved in text format on a laptop, or have a password on the note application is saved on a phone.

Quick tips for effective Cyber security Risk Management.

  • Educate your company's managers/leaders on the risks and opportunities associated with the usage of data and digitization.

  • After investing in Cyber security, be vigilant.

  • Even if your Cyber security is outsourced, be responsible.

  • Encourage the use of Cyber security best practices and Enforce security protocol

  • Conduct crisis management and cyber tabletop exercises.

  • Support in the development of business continuity and resilience plans.

  • Improve cyber hygiene by raising cyber security awareness.

  • Cyber risk management practices in the organization should be increased.

  • Be proactive rather than reactive.