Categories
Resources

NCSC’s Cyber Security Training for Staff

Free cyber security e-learning for small to medium sized businesses, charities and the voluntary sector

Categories
Tips

Four questions boards should ask about domain name security

The humble domain name can be the Achilles heel in an organisation’s cyber security

Categories
Commentary & Insights

Cyber security Exercise in a Box guided tour

Tabletop exercises are an effective and practical way to work with management and other stakeholders to simulate responding to a cyber incident.

Categories
Personal Accountability

Two types of e-mail provider to avoid for board business

Company directors using personal e-mail services or accounts belonging to a substantive employer, introduce risks to the company they direct that need to be managed.

Categories
Tips

How boards can protect the security of employee information

Employee data can be exceptionally sensitive and deserves special attention from a cyber security perspective

Categories
Culture

How doughnuts can make or break your cyber security culture

Company context is a critical consideration when implementing and approving quirky initiatives to improve cyber security culture

Categories
Resources

Directors: How to get to know your critical digital assets

Knowing your critical digital assets can be as important as knowing your critical financial numbers

Categories
Resources

Building a Model of Organisational Cybersecurity Culture

Paper describing organisational cybersecurity culture, the factors that contribute to its creation, and how it can be measured

Categories
Resources

NCSC’s Cyber Security Toolkit for Boards

Resources designed to encourage essential cyber security discussions between the Board and their technical experts

Categories
Resources

AICD’s Cyber Security Governance Principles

A framework for effective board oversight of cyber security across five key areas