This is big! Meeting the #cyberessentials requirements is important to show an organisation can be trusted to keep data secure. That the #electoralcommission still haven't done enough to pass it is incredibly shoddy.

https://www.bbc.co.uk/news/technology-66709556

"The Cyber Essentials accreditation was created to ensure the highest standards of IT security are in place to safeguard the digital economy. With the threat of cyber attacks today, it’s essential to implement the very best security measures – and not just the essentials."

More meaningless words. Also, the scheme is literally called 'Cyber Essentials' - so it is JUST the essentials.

The amount of bullshit these 'cloud' companies produce is unreal.

#cyberessentials

"By implementing Cyber Essentials, we can drive productivity in line with best practices, preventing common breaches while identifying and eliminating threats. This allows us to focus on optimising systems and services for our customers."

Lots of meaningless words here.

#cyberessentials

I wonder if anyone gets ISAME to approve Cyber Essentials before the 3rd try as they’re incentivised to fail you 3 times so they can collect the fee again.

Also, when they say what’s your policy on giving admin rights, and you say the policy is “users aren’t allowed them, only the 2 senior engineers get those rights” do they then reject and ask “what’s the policy”. That is the policy for 20 years and isn’t going to change. Users don’t get admin rights, period.

#infosec #cyberessentials

I’m always intrigued by how Universities are responding to #CyberEssentials with #cots for Mobile Device Mansgement (#MDM) that target #macos and #Windows. #linux seams to be never supported, or one is told ‘#WindowsSubsystemLinux is suitable, or _just_ use a virtual machine’.

Yet I never seem to see discussions/information with how MDM System will impact on #researcher productivity, especially in the #sciences where #programming & #experimentation & #development is prudent.

CARA Technology provides comprehensive I.T. support to businesses UK-wide. This is delivered first and foremost by employing highly qualified and experienced technicians to manage and support your business. This is facilitated and supported by market-leading remote management, monitoring and reporting tools to ensure the technicians can be proactive and rapidly respond in an emergency. Most businesses today rely on many elements of technology to provide products or services to their customers, relying on servers, online software tools, email and internet connectivity for daily business functionality. Losing just one function of the business can have detrimental effects on business operations and, ultimately, the bottom line. Our goal at CARA is to provide advice, help and support to ensure these problems do not occur. If unforeseen problems arise, we have a team of highly qualified professionals to respond. Your business continuity and efficiency are our primary responsibility. https://cara.uk.com/it-support-macclesfield/ #ITSupport #Cheshire #Microsoft365 #CyberSecurity #CyberEssentials

Cyber Essentials Updates in the U.K. 🇬🇧

https://www.ncsc.gov.uk/information/cyber-essentials-technical-requirements-updated-for-april-2023

https://iasme.co.uk/articles/what-are-the-changes-to-cyber-essentials-this-year/

#CyberEssentials #CyberEasentialsPlus
#cybersecurite

Yesterday I had an excellent opportunity to help educate a room of Solicitors about Cyber Security. Thank you to Russell Brown from X-Press Legal Services - Greater Manchester & Cheshire for the invite. Recently the ICO released a report known as the “Tuckers Report.” They have used Tucker Solicitors as an example to all other solicitors to take Cyber Security & GDPR seriously. I touched on the following four topics in my presentation. • Cybersecurity Risk Assessment • Technical Controls • Policies and Procedures • Staff Training Its good to know that Xpress Legal are Cyber Essentials Plus certified showing a true dedication to security for all of their clients. Being risk-averse is the best approach to help deliver top services. Just to add a little pressure, Mark Stanton from The Personal Development People was also in the room, casting a beady eye over and taking notes (which I’m sure he’ll tell me later). 😉 ICO Tuckers Report can be found here: https://ico.org.uk/action-weve-taken/enforcement/tuckers-solicitors-llp-mpn #CyberSecurity #CyberAwareness #CyberEssentials

Here is a link to the latest @NCSC Threat Report:

https://www.ncsc.gov.uk/report/threat-report-13th-january-2023

One noteable takeaway for smaller companies is that prevention is the best first step to securing your business, and pointing towards #CyberEssentials

I wonder if there any statistics somewhere showing the actual benefit to Pubiic Sector procurement that forcing small businesses to comply with the often arbitrary and incomplete Cyber Essentials rules and requirements gives?

Because I remain convinced as it stands it does more to boost the pockets of those running the scheme and vendors flogging new stuff people don’t really need than providing actual meaningful benefit.

#cyberessentials #itsupport

NCSC has announced that micro/small organizations in the UK that provide aid services and the charities can get FREE support for the Cyber Essentials programme.

If you meet the criteria, don't hestitate to apply for it.

#NCSC #CyberEssentials #cybersecurity #hackers

https://www.ncsc.gov.uk/information/funded-cyber-essentials-programme

I don't know if #yearininfosec is a thing, but what the hell:

I started the year with an #avionics embedded job with @cybergibbons - a curious device with some interesting findings.

I looked at quite a few consumer-grade routers. Some were bad, some were good.

I did a few #threatmodelling and consultancy engagements which I enjoyed a lot. I liked the freedom of communication.

I went to #RSA and #DEFCON - I even got to speak at the #AerospaceVillage (slightly terrifying) and did around 300 landings in our flight sim with my amazing colleagues and people who queued for ages to have a go! I did a video for it too! https://www.youtube.com/watch?v=6DHi-qC1jww&t=2s

I got #covid finally :(

I did quite a few #cyberessentials jobs, I actually enjoy them.

I met with my lovely colleagues in person more than last year.

I had an amazing time at sea with @cybergibbons on a whole-ship maritime job. Hard work but very satisfying, and hope to do more of those.

Early next year I'll be speaking at #SANS in London.

Most of all for #2023goals I'll be making a better personal v work balance and look forward to seeing friends and doing more fun stuff.

Cheers 🥃​

The Cyber Resilience Centre for the South East is working in partnership to complement and add value to the services of partners like us. The Cyber Resilience Centre for the South East is a police-led partnership with academia and businesses aimed at improving cyber resilience in businesses in the South East of England. They provide businesses with access to the latest local as well as national information on emerging cyber threats, criminal trends, best practice for cyber resilience.

​Sign up for FREE now to receive your welcome pack and start that safer #CyberEssentials journey.

https://www.secrc.co.uk/partner/baigents