The UK government has done a lot to create a large chunk of this package with its own


        Cyber Essentials Certification Scheme. It is supported by industry and offers every business a

        simple and highly effective cyber security template. There is a self-assessment version and the
        Cyber Essentials Plus option, when you are independently audited.

        Research has shown that when these Cyber Essentials techniques are applied, up to 80% of
        cyber-attack threats are blocked. These tactics techniques and procedures (TTP) need not cost

        anything, requiring instead a set of administrative standards for office security governing staff

        behaviour when online, cyber security policies for financial controls, password management, IT

        gateway configurations and the much talked about need for regular operating system patching.

        Alongside your Cyber Essentials Accreditation
        comes cyber security awareness training.
        Whilst classroom style training exists, the
        future of cyber security training, particularly
        for regulated industries will be online and
        continuous. Managed by the HR department
        or Compliance, employees are set training that
        matches their risk level. On reception, low risk
        and in accounts, high risk using training platforms
        that are user friendly, intuitive, and off ering an
        affordable way to access highly eff ective cyber

        awareness training conveniently in the offi  ce, on
        the job, using continuous learning programmes.


        Even with the best security software that IT budgets permit, Cyber Essentials certifi cation, and
        cyber security awareness training, office networks are being penetrated. One ‘click’ of a rogue


        email by an employee could infect one or more workstations, allow hackers in, cause a data
        breach or even a cyber ransom demand.