The National Cyber Security Centre released a free toolset called “Exercise in a box” that allows businesses to work through what would happen if they were to fall victim to a number of cyber threats. These include, if a phishing email is opened by an unsuspecting employee which becomes a ransomware infection, or a malware infection from an infected USB which results in a data breach. Taking this exercise will give our clients insight into the unknown and most importantly highlight the areas of their business that are at risk.
Completing the exercise will give you an insight into what would happen during an incident, giving you an indication as to where you need to plan and what areas you may be more at risk. With regulations such as GDPR, it is essential that you can prove you have the necessary defences in place, therefore if you do not, you may be A) at a higher risk of a data breach and B) may be liable to pay a penalty or fine.