The Cyber Risk
If you’re a small or medium-sized enterprise (SME) then there’s around a 1 in 3 chance that you’ll experience a cyber security breach.
Falling victim to cyber crime can be devastating for your business, and when you consider that SMEs make up 99.9% of Britain’s 5.5 million private sector businesses, it represents a real threat to the whole of the UK economy.
As part of the UK’s National Cyber Security Strategy the Cyber Protect network has been created to help improve the ability for UK PLC to defend itself against cyber attack.
FREE CYBER AWARENESS PRESENTATIONS
The Cyber Protect network exists across the UK and provides FREE cyber awareness sessions to organisations including business, education, public services, local government and the charitable sector.
Our cyber awareness sessions take up to 2 hours and cover:
- Current Cyber Threats and Trends
- Data Breaches
- Phishing, Smishing & Vishing
- CEO Fraud and Mandate Fraud
- Social Engineering
- Denial of Service
- The Insider Threat
- Response Planning
- Cyber Drills
- Public WiFi risks
- Great Passwords
- Secure Devices
- Continuing Professional Development
We can come to you provided you have a suitable venue. There is no limit to the audience size. The presentation is delivered by fully trained Police Officers from the Cyber Crime Unit – for FREE.
“Jon called to say thank you for saving his company £125,000 through an attempted invoice fraud. Staff were reminded of the event that they had attended 6 months earlier. If they hadn’t gone to the event SEROCU Cyber Protect presented at we would have been stung.”Jon, Sussex
I thought your presentation and communication style was excellent and we really appreciate you supporting us and our clients.Paul, UK Banking sector
“It is important for you to know that your efforts do have a positive effect out here in the business world. I hope you continue the great work you do.”Brian, Sussex
I have had numerous positive comments from the members of staff who attended the CPD session after school. It has certainly given us a lot to think about and some clear action points both in the shorter and longer term.Headteacher P, Sussex
DECISIONS & DISRUPTIONS EXERCISE
This exercise is targeted towards senior decision makers within companies, but it can also be of benefit to other staff with varying levels of technical knowledge. It creates an immersive experience in which participants have to use their problem solving, collaboration, leadership and communication skills.
It takes approximately 1 hour and the target audience is senior leaders and decision makers. The game works best with 7 players. We have the ability to run ten games simultaneously for larger groups. This exercise is FREE.
We are now offering organisations the opportunity for a free vulnerability assessment / IT health check.
What is the assessment?
The vulnerability assessment uses an industry recognised software package. It’s not a penetration test but a basic assessment of your network (i.e. internet facing systems like firewalls, mail servers, etc… not user workstations or internal systems) – it doesn’t give protection against complex or persistent attacks, but does give an overview of the network security weaknesses that could be exploited by criminals on the internet. To obtain such a scan from the private sector could incur a cost.
Why are we offering this service?
Cyber criminals are constantly scanning the internet looking for vulnerabilities. A large percentage of crimes occur when the attacker has found a well-known, easily exploitable vulnerability in an organisation’s network. If you believe your organisation may benefit from this prevention service, please get in touch and a member of the team will contact you to discuss the assessment in more detail.
These are all crimes which could have been prevented if the organisation had known about the vulnerability and taken the appropriate action. The aim of this service is to identify these common vulnerabilities before the criminals do. Falling victim to cyber crime can cause significant financial loss, reputational damage and emotional distress for those involved.
How will the assessment be conducted?
By providing some technical information to us, this assessment can be conducted, remotely – meaning nobody needs to be physically present on your premises and the assessment can occur at any time of the day.
What you will receive?
A report which outlines your vulnerabilities, not all of them, but its a good way of establishing if you have high risks, easy to exploit gaps, which attackers could use. The report will help you understand where you need to start to improve your security and an assessment can help you comply with regulations and certifications such as Cyber Essentials, GDPR, ISO27001 and PCI Compliance.
Get in Touch
Please contact the relevant Police Cyber Crime Unit direct to access any of the services …
Please be aware that our primary business audience is Small to Medium Enterprises (SMEs), though we are willing to have conversations with larger companies and any company which is Victim of a significant cyber incident.
Exercise in a Box
No cyber defence is 100% effective. Recognising that fact, and preparing for an incident in advance, is key to mitigating the impact – and may be what enables your business to survive.
Planning for incident response should be a continual and dynamic process. To get started, think about the incidents that might affect your business – ransomware, business e-mail compromise, Distributed Denial of Service (DDoS), malicious insider. You should develop individual responses (‘playbooks’) for each incident – and don’t forget, we are here to help.
The National Cyber Security Centre created ‘Exercise in a Box’ in response to feedback that conducting cyber drills was expensive and difficult. It is a free online cyber exercising tool which guides participants through different cyber incidents. This will allow you to test your response plans and develop their maturity.
If you’d like us to assist you in completing the exercises, either as observers or advisors, please get in touch:
Network Defenders – join CiSP!
CiSP is the Cyber security Information Sharing Partnership. CiSP is a joint industry and government initiative set up to exchange cyber threat information in real time, in a secure, confidential and dynamic environment, increasing situational awareness and reducing the impact on UK business.
CiSP is a forum type platform separated into nodes based on geography, organisation type or threat type. Network Defenders, UK Government, the National Cyber Security Centre, ROCU Protect Network and Law Enforcement can share information promptly and securely
The Benefits of CiSP
- Engagement with industry and government counterparts in a secure environment
- Early warning of cyber threats
- Ability to learn from experiences, mistakes, successes of other users and seek advice
- An improved ability to protect their company network
- Access to free network monitoring reports tailored to your organisations’ requirements
To become a registered CiSP member you must be:
- A UK registered company or other legal entity which is responsible for the administration of an electronic communications network in the UK
- Sponsored by either a government department, existing CiSP member or a regional Cyber PROTECT police officer or industry champion.
In the meantime, if you are on Linkedin and Twitter, it’s worth connecting with SEROCU Cyber Protect to assist in this process.
Cyber Security Advice for Organisations
For guidance on improving the cyber security of your organisation, work through our summary:
Cyber Security & Privacy for Staff
For guidance for staff and individuals on staying secure online and maximising your online privacy, please go to our dedicated pages: