Following the news and warnings of a Russian cyber threat, the National Cyber Security Centre (NCSC) has issued guidance for all organisations to ensure technical security controls have been implemented.
If you haven’t yet looked at the details, the scenario is outlined here. And the guidance document can be found here.
The advice is applicable to any organisation, big or small, to ensure that data is protected in the event of malicious penetration of systems that can also expose personally identifiable information (PII).
Implementing practical processes and systems to protect your data is essential. Our Cyber Security Assessment identifies risks and vulnerabilities in your digital infrastructure to help protect your organisation from the increasing methods of attack.
The General Data Protection Regulation (GDPR) demands greater protection of PII and enhanced rights of data subjects. Our blog post outlines some key steps you need to take to secure compliance with the regulation, which comes into force on the 25th May 2018.
For further reading, take a look at our white paper to assess the impact of the GDPR, primarily from an IT perspective - examining the role that IT can, will and has to play in the implementation of the new requirements.
- By Chris Watkins
(Principal Architect – Security)