1. Network Security
2. Implement staff cyber security training
3. Password policies across the business including Multifactor Authentication (MFA)
• A combination of letters, numbers and symbol.
• At least 12-16 characters.
• No easily guessed information such as names or birthdays.
It can be good practice to implement a company-wide password manager. This enables employees to generate and store complex passwords without having to remember them all. Having software like this in place also reduces the temptation for employees to reuse passwords.
Where possible, traditional passwords should always be supported by Multi-factor Authentication (MFA). Multi-factor authentication is an effective way to add an extra layer of security to your business accounts and individual employees accounts. Multi-factor Authentication requires two or more verification factors to gain access to an account. Most commonly this includes a traditional password as well as a one-time code only accessed from a verified device. Biometric verification can also be used to protect the most critical accounts. MFA makes it significantly harder for attackers to breach accounts, even if they obtain a password. Critical accounts such as email, financial and cloud services should all be protected by MFA.
4. Plan for the event that a cyber breach does occur
• Defining the roles and responsibilities of your incident response team.
• Steps for identifying, containing, and mitigating a breach.
• Communication protocols for informing stakeholders, including customers and legal authorities.
• Post-incident evaluation to learn from the event and improve future defences.
Your incident response plan should be reviewed regularly and updated to ensure it remains in line with current threats and business operations.
5. Regularly backup your data
Regular backups are crucial for mitigating the damage caused by cyberattacks, particularly ransomware. A robust backup plan ensures that, in the event of a breach or data loss, your business can quickly recover. Best practices for data backups include:
• Automating backups to occur daily or weekly, depending on your needs.
• Storing backups in multiple locations, such as in the cloud and on physical devices.
• Regularly testing backups to ensure that data can be successfully restored.
In the event of a cyber incident, having up-to-date backups can minimize downtime and reduce recovery costs. If you would like support in implementing a robust data backup strategy for your business this is something we can help you with, just reach out to a member of the team (call 0330 122 0550 or email
6. Ensure software is up to date
Outdated software can contain vulnerabilities that cybercriminals exploit. Keep your operating systems, software, and hardware up to date by:
• Installing patches and updates as soon as they're released.
• Enabling automatic updates where possible.
• Routiney reviewing the security features of third-party software.
By staying current with software updates, you reduce the risk of being targeted by attackers exploiting known security flaws.
We hope that this blog post gives you some guidance as to the steps you can take to enhance the cyber security of your business. If there is anything we can do to help, please reach out to a member of the team on 0330 122 0550, or email us at