Apparently, UK businesses feel let down by the government when it comes to cybersecurity.
A recent research report compiled by RedSeal has shown that many businesses blame a lack of advice and guidance from the Government when it comes to securing themselves against cyber threats. But when these same organisations are seen time and time again that they aren’t even implementing the cyber basics there must be a question as to whether businesses are taking sufficient responsibility for themselves rather than pointing at the Government.
The Cyber Essentials Scheme, for example, has been running for several years now, but is it solely the Government’s fault that the uptake has been low?
There are only so many times you can give out the same warnings and advice after all, and if people in positions of authority in these same complaining organisations don’t heed that advice, there’s nothing more that can be done.
In reality, the British government, in particular, the NCSC has done a lot in trying to raise awareness of the risks businesses face. We in the cybersecurity sector, too, are doing our part by constantly offering advice in a wide variety of formats.
With data showing that despite all the warnings one in five companies still have no cybersecurity plan in place or that just 30% of UK businesses have a board member dedicated to cybersecurity, it’s time for them to start looking in the mirror.
There is a tonne of advice out there that is readily available for anyone wanting to view it.
The cyber threat is only going to increase as more and more businesses take their operations online and with new tools that speed up the hacking process being created on an almost daily basis, we can expect to see more companies suffering breaches in the years ahead.
Perhaps the UK government should make Cyber Essentials a necessity for all businesses and penalise those who don’t take the appropriate action.
We’ve seen over the course of 2018 alone that local governments need to take the cyber threat more seriously with numerous reports in the press of data breaches and cyber-attacks.
A Freedom of Information (FoI) request made by RedScan showed that 43 out of 226 NHS Trusts allocated no funding at all to cybersecurity from August 2017 to August 2018, it’s little surprise that time and again we see the NHS in the news for all the wrong reasons when it comes to cybersecurity.
Perhaps aside from businesses taking greater responsibility for themselves the biggest culprit in the lack of awareness is the media. By only seeking out the ‘juicy’ stories or scaremongering click-baiting headlines its natural that they only discuss the issue when some unfortunate has suffered a breach. Making people afraid of hackers and cybercriminals brings in more clicks and revenue after all.
At the end of the day, it’s everyone’s responsibility to ensure their organisation is as secure as it can be. Sure, the government has a part to play but so too do the businesses themselves. The can shouldn’t be kicked down the road; they need to get a grip on cybersecurity now. And before anyone complains, there is a lot of advice out there.