Site icon NDML

The three pillars of cyber security

To help break down how we approach getting the cyber security for your venue and business up to scratch, we can break it down into three core pillars.

This helps us focus the mind, and take a step by step approach to make sure we’ve covered every base. So take a look through at these three crucial areas, and keep reading our upcoming features on more ways you can protect yourself.

People

The biggest threat to any business is you and your employees. One
small mistake could cost you and your business time, money and your
reputation.

Human error remains the leading cause of data breaches. It’s very
important that all staff are able to identify and report all types of cyber
threats. You are only as strong as your least informed employee.

Process

Every company, big or small, needs to communicate their organisations cyber security policy. Computer systems should have defined roles and departments follow documented procedures.

Businesses need to determine what rights and privileges users need to perform their duties, making sure higher-level system privileges are carefully controlled and managed. As well as individual logins for employees whenever possible, redundant accounts (including those of former staff members) should be removed immediately.

A strong cyber leadership is needed to establish and enforce processes. Management must be prepared to invest in cyber security resources.

Cyber threats are not just online – think physical. Unauthorised visitors, removable media, unsecured IT equipment are all examples where data can go missing.

Technology

You need the help of external hardware and software. This may come in the form of a Firewall, Antivirus or Spam filter. All help to mitigate cyber risks.

Your main business system may be current and supported, but when paired with another solution, vulnerabilities usually appear.

It’s a good idea to hire an external expert to evaluate your risks. Periodic cyber security assessments are a central element in any good security programme because it highlights the strengths you can amplify and the weaknesses you can improve. An external penetration test will provide a comprehensive report of your company’s exposure.

So now you know what to look out for, take some time out and look at your people, processes and technology. Are they up to scratch? Could they prevent a potentially catastrophic attack on your venue?

If you’re not sure, chat to our team and we can walk you through how to make sure you’re safe.

Exit mobile version