Three key takeaways from The Business Show 2022
Earlier this month the CRMG team attended The Business Show at London’s Excel. It was a packed conference with small to medium size companies from across the UK coming together for two days of networking, showcasing, panels and presentations.
The CRMG stand was a hive of activity, with a wide range of businesses stopping by to learn more about the cyber threats they face and what they should be doing to ensure they are genuinely resilient to them.
If you couldn’t make the show, below we recap three key trends that came to the fore in the conversations we had with delegates over the two days.
Takeaway one – Cyber security is just not on the radar of some businesses
Just hours into the show it became clear that for a significant number of small businesses, cyber security is something they’ve just not considered enough. This frightening level of immaturity when it comes to cyber risk awareness and understanding means a large percentage of the British economy is exposed to and at risk of falling victim to a cyber incident. A successful cyber attack has the potential to paralyse an organisation’s networks and systems, killing a business within hours. This means it’s critical for companies of all sizes to understand the risks they face and then take the necessary steps to ensure they are resilient both in terms of IT and the business itself.
Takeaway two – Other businesses know they need to do more
Despite my alarm at some businesses having never considered the cyber risks they face, I was heartened to speak with others that were aware of the threats out there and had taken steps to protect themselves against them. But speaking with representatives from these (mainly medium-sized) organisations, many also felt they needed to do more but weren’t sure how to go about it. Most thought that cyber resilience was an expensive undertaking and that they could spend vast sums of money and time and still not be protected. Of course, we explained that cyber resilience can be achieved efficiently, both in terms of cost and resources.
Takeaway three – Cyber security and the human element
A lot of the businesses we spoke to see cyber risk as a problem for the IT department to solve. But this approach leaves the business exposed. Cyber risk covers all aspects of an organisation, from the Board right down to its people. In fact, employees can be a business’s greatest weakness (but equally its greatest strength). Organisations must consider how to manage movers, leavers and new starters while also training staff on all aspects of cyber security. This includes how to handle phishing emails, creating effective passwords and keeping them safe – and even what to do in the event that a cyber attack is successful. This can make the difference between an attack getting through or not, or ensuring the business is not damaged beyond repair if it does.
For small to medium size businesses to be genuinely resilient, they must first get a clear picture of where they’re currently at when it comes to cyber security.
A CRMG Cyber Risk Checkup allows them to do just that, while also providing a realistic improvement roadmap based on the company’s risk profile and resources available. This helps to reduce cyber risk exposure while improving cost efficiency and boosting business confidence.
This can be combined with War Gaming and Disruption planning, which helps to ensure it’s business as usual in the event of a successful cyber attack. This allows businesses to test their ability to maintain operations, which is key to limiting the impact and minimising damage to the organisation. It also helps to engage and educate management and staff as well as implement effective business disruption arrangements based on the outcome of the exercise.
All of the companies we spoke to at The Business Show would benefit from a CRMG Cyber Checkup and conducting War Gaming and Disruption Planning. If you’re reading this, the chances are your organisation could too.
From Us To You.
Explore Our Resources.
Understanding the Fifth Chapter of DORA
The Digital Operational Resilience Act (DORA), introduced by the European Union, is a critical piece of legislation designed to strengthen
Understanding the Fourth Chapter of DORA
The fourth chapter of the Digital Operational Resilience Act (DORA) is designed to ensure that financial entities can withstand, respond
Understanding the Third Chapter of DORA
As we continue with our analysis of the Digital Operational Resilience Act (DORA), Chapter 3 stands out as a pivotal
Meet Our Leadership Team.
At CRMG, our senior leadership team brings a rich history and deep expertise in cyber security. Spearheaded by consultants who are influential figures in the industry, our leaders are highly networked and well-established, with backgrounds in the ‘Big- Four’ firms.
© Cyber Risk Management Limited. All Rights Reserved.