Becoming Cyber Resilient

Preparing members for cyber attacks

Becoming Cyber Resilient

Our Cyber Incident Response Plan guidance is essential advice on how to get prepared for what is now an inevitability for businesses – cyber attacks. The DCMS’s 2021 Cyber Security Breaches Survey showed that four in ten businesses reported having a cyber security breach or attacks in the last 12 months; and the Information Commissioner’s Office recorded 8,815 data security incidents during 2020/21.

With COVID-19 forcing a move to work from home, cyber criminals exploited the opportunities this presented. And with hybrid working set to stay, firms will remain vulnerable to breaches and attacks unless they take proactive steps to review their current IT policies, refresh their procedures on dealing with a cyber incident, test their plans regularly, and strengthen any areas of weakness.

We’ve made this a priority for members and, with thanks to our Cyber Resilience Committee for their insights, our guidance addresses the documents that should be readily accessible when an incident occurs, how to determine a proportionate incident response dependent on the severity of the incident, assigning roles and responsibilities and determining communication strategies, amongst other areas.

Regulators are also focussed on ensuring firms strengthen their operational and cyber resilience by testing extreme, but plausible, scenarios in order to protect consumers. This is a business critical issue for businesses and if you would like further information, please visit the cyber resilience section on the members’ area of our website.