Menu Close
Close

3 Questions for your next board meeting

In June, the UK National Cyber Security Centre’s (NCSC) partner organisation in Australia, the Australian Cyber Security Centre (ACSC), posed three questions to their business readers. At Kloudwerk, we believe these questions are critical for you to consider and we felt compelled to share with all our SME followers, who typically are non-tech minded business executives.

3 questions for your next board meeting

In June, the UK National Cyber Security Centre’s (NCSC) partner organisation in Australia, the Australian Cyber Security Centre (ACSC), posed three questions to their business readers. At Kloudwerk, we believe these questions are critical for you to consider and we felt compelled to share with all our SME followers, who typically are non-tech minded business executives.

 

Since the global pandemic, then the invasion of Ukraine, we have been saturated with global bad news stories about cyberattacks, data breaches, ransoms, and “rapid surges” in cybercrime.

As a result, it is understandable that many will feel cyber-fatigued and want to disconnect from the chaos. However, we need to continue to remain vigilant for the protection of our business and clients.

What are your options?
 
You can make a number of executive decisions regarding your business and how you would like to manage your cyber risk exposure. Let’s explore further.
 

Option 1. Do nothing and simply accept the risk – Brave move! 
Option 2. Buy expensive software and hire the most expensive and glamorous cybersecurity personnel in the land – can you afford that? 
Option 3. Find a middle ground, a solution that aligns with your risk appetite at an acceptable cost.

The ACSC suggest that understanding your threat environment is critical. Kloudwerk also believes this is crucial for any business with a website or internet access; not just for the large firms, but for small and medium firms, governments, NGO’s, charities, sport clubs, even your local device charging station.

The 3 questions posed by the ACSC:

  1.  Consider, who may target your business? 
  2.  What infrastructure could the cyber criminals target?
  3.  What is the possible consequence of a successful cyber-attack on your business?
 

Board or Executive Meetings – Action item

If you haven’t already formally considered these questions, Kloudwerk highly recommends these are added to the agenda for your next meeting for discussion. As your business grows, these three questions need to be revisited regularly, as the answers may well have changed. You may not have all of the solutions; the point is one of awareness and making sure you are comfortable with your level of protection against the identified risk.

Kloudwerk previously identified and discussed in a recent article “IT vs Cyber – what’s the difference” article that your IT professionals will often require support from a Cyber Security Specialist. Antivirus software can often be swiftly bypassed by even a relatively novice cybercriminal. 

The Cyber Security Specialist will develop a threat model that aligns with the critical systems for your SME for a reasonable budget. They will also equip you with ongoing security practices to develop cyber resilience as the threat landscape continuously evolves. 

These solutions are specifically designed by specialists in cyber security and business to ensure up to date industry standards are implemented. All with a critical eye kept on ensuring appropriate returns on investment and value for money for every firm are achieved.

Source: https://www.cyber.gov.au/acsc/view-all-content/publications/protecting-industrial-control-systems 


If your organisation is not clear on the cyber risks, or the solutions, Kloudwerk are here to help you. We fill your security gap by utillising seasoned security professionals in our affordable consulting packages.  

– We build an understanding of your organisation
– We develop a roadmap to address key risks
– We help you implement the required changes and keep your business protected on an ongoing basis.

Visit our Cyber Consultancy page for more information.

Share:

Facebook
Twitter
Pinterest
LinkedIn
On Key

Related Posts

WEBSITE SECURITY REPORT

GOLD

Imagine you own a house and want to add an additional floor. First you have to review and strengthen the foundations. This service builds cybersecurity foundations to facilitate growth in a resilient, timely manner.

This service will also provide the company with a cybersecurity risk assessment and improvement plan but with significantly more support from a senior consultant to help the company embed improvements in a continuous, timely manner

SILVER

The dreaded car MOT is looming. It’s the unforeseen wear & tear that results in some necessary annual maintenance. Our cybersecurity review will highlight what needs to be done as your engineers.

In addition to the context gathering stage and security footprinting service, a senior consultant will perform a risk assessment to understand the company’s cyber risks and provide recommendations. They will also be available to undertake monthly calls for answering questions, providing guidance and checking on whether risks are reducing.

BRONZE

You’re embarking on a more active lifestyle, chosen to go on a diet and get in shape. Think of this service as the cybersecurity equivalent of the personal trainer, helping you along the way.

After an initial context gathering stage, a junior security consultant will be available once per month to answer questions and provide recommendations based on company goals and activities. A cybersecurity footprinting service will allow the company to continuously monitor its external security posture.

Add Your Heading Text Here

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Add Your Heading Text Here

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.