Cyber Security Risk Preparation

Cover the cyber security basics

- Patching, antivirus and a firewall

- Data loss

- Compromise sensitive customer information

- Phishing and social engineering attacks

- Denial of service

- Blackmail

- Identity theft

- Email, rogue sites, careless staff members

- identify risks related to cyber security

- establish cyber security governance

- develop policies, procedures and oversight processes

- protect company networks and information

- identify and address risks associated with remote access to client information and funds transfer requests

- define and handle risks associated with vendors and other third parties

- be able to detect unauthorised activity

- Privilege abuse

- Data mishandling

- Unapproved hardware (devices, external drives) and software

- Internet and email misuse

- Develop a plan of what to do when there is a cyber attack

- Understand what resources and actions you need to get the business productive again

Keep your infrastructure up to date

- Older hardware can be a significant risk as the support ends