Close Menu
  • News
  • Home
  • In Profile
  • Finance
  • Legal
  • Technology
  • Events
  • Features
  • Wellbeing & Mental Health
  • Marketing
  • HR & Recruitment
  • About
  • Advertise
  • Events Calendar
  • Business Wall
  • Subscribe
  • Contact
  • 0843 289 4634
X (Twitter) LinkedIn YouTube
Trending
  • Busting myths about Asset Based Lending 
  • Self-driving cars could hit UK roads sooner than you expect, says Heligan Group
  • New Venture Aims To Help Propel Growth For Start-Ups
  • Building community, one cause at a time
  • How to build a £1 million pension and ISA portfolio
  • 5 Reasons Why Every Office Should Include Flexible Spaces to Work and Their Key Benefits
  • Pension reforms risk higher prices, fewer jobs and slower growth, FSB warns
  • Building Trust in AI Through a Decision-Centric Approach in Manufacturing
X (Twitter) LinkedIn YouTube
SME Today
  • About
  • Advertise
  • Events Calendar
  • Business Wall
  • Subscribe
  • Contact
  • 0843 289 4634
  • News
  • Home
  • In Profile
  • Finance
  • Legal
  • Technology
  • Events
  • Features
  • Wellbeing
  • Marketing
  • HR & Recruitment
SME Today
  • About
  • Advertise
  • Events Calendar
  • Business Wall
  • Subscribe
  • Contact
  • 0843 289 4634
  • Twitter
  • LinkedIn
  • YouTube
  • RSS
You are at:Home»Technology»Ensuring cybersecurity resilience: The necessity of having an effective incident response plan
Cyber security and protection of private information and data

Ensuring cybersecurity resilience: The necessity of having an effective incident response plan

0
Posted By sme-admin on July 21, 2023 Technology

The frequency of cyber-attacks have been on an upwards trajectory for several years now, but 2022 saw new threats emerge and impact organisations on a regular basis. According to the latest Cyber Security Breaches Survey from the UK government, 69% of large organisations and 32% of smaller firms experienced a cyber-attack in 2022 and with recent highly publicised attacks at the likes of the BBC, British Airways and Boots, it’s clear that cyber-attacks are a gargantuan threat to businesses of all shapes and sizes.

The rate and frequency of these attacks is concerning but even more alarming is the vast number of businesses who lack the necessary defences to protect themselves from a potential incident. For smaller businesses, cyber security is falling down the priority list as they look to prioritise addressing economic issues like inflation and turbulent markets. According to the same government survey, just 21% of businesses have formal incident response plans in place. With the door seemingly ajar for opportunists to strike, businesses must mobilise their defences, and this begins with the implementation of an effective incident response strategy.

The five-step approach to ensuring your business is protected

As opportunists continue to seek out vulnerabilities to exploit their targets, one of the biggest failings businesses experience in the event of a cyber-attack is a lack of preparation. Although businesses may be tempted to purchase top-of-the-range cyber defence programs and invest in sturdy firewalls, the creation and implementation of an incident response strategy needs to be a big priority. The ‘5-step cyber security framework’, developed by the National Institute of Standards and Technology (NIST), is a solid model to follow as you look to develop your strategy. The model outlines five stages business leaders must take to prepare for and mitigate against the impact of a cyber-attack to ensure that downtime and disruption is minimised, and that recovery is a quick process. The five steps are as follows:

  • Identify the risks: Ensure that your IT personnel gain an understanding across the entirety of your business to manage cyber security alongside any potential risks to systems, people, assets data and more. Following this, begin to identify what processes, policies and software need to be implemented to ensure protection.
  • Protect against the risks: Once you have identified any components within your organisation that could be a potential risk, develop and implement appropriate safeguards to ensure that your critical infrastructure and data is protected in the event of an attack. For example, you can enable duo-authentication sign-in protocols or background checks to ensure that your risk management policies are adhered to.
  • Detect when an attack occurs: Ensure you have a suite of software and processes implemented into your IT infrastructure that can detect and identify attacks when they occur. For example, install Distributed Denial –of Service (DDoS) projection and firewalls to secure your cyber networks.
  • Respond to breaches in a timely and effective manner: As part of your incident response strategy, a crucial component is to have a clear communication strategy for any impacted stakeholders or customers. In the event of an attack, make sure you respond to breaches in a timely and precise manner. For example, having Recovery Time Objectives (RTO) in place can restore your critical systems and applications, minimising the amount of downtime for your business.
  • Data recovery: Often, cyber-attacks will target your data, so it’s essential you have appropriate data recovery plans implemented to ensure business continuity. Using Recovery Point Objectives (RPO) can help ensure that your data is backed up or replicated, as well as ensuring that it can be successfully recovered.

Cyber resilience needs to be engrained into your company culture

Having a clear and concise strategy on how to respond to incidents, alongside the implementation of security software, is incredibly important for businesses to remain resilient in today’s cyber-focused landscape. But for organisations to truly remain secure, cyber resilience must be engrained into your company culture. Just as employee wellbeing and sustainability are high ticket items on a business’ corporate cultural policies, fostering a culture of cybersecurity will enable all of your employees to become an effective security control. From running awareness courses to educate your workforce on the myriad of threats, and how to spot them, to having your C-suite executives lead by example by living and breathing cyber-safety by taking a proactive approach to various measures such as password refreshes and identifying malware or spam emails. With the right approach and a clear incident response plan, you can rest assured the cybersecurity of your business is the strongest it can be.

Author: Jack Peters, Customer Solutions Architect, M247

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Self-driving cars could hit UK roads sooner than you expect, says Heligan Group

Building Trust in AI Through a Decision-Centric Approach in Manufacturing

Ransomware payment ban: What is it and how can businesses prepare?

Comments are closed.

Follow SME Today on Linkedin and share all the topics you find interesting
Verify your identity for Companies House

The Newsletter

Join our mailing list for the best SME stories, handpicked and delivered direct to your inbox every two weeks!

Sign Up
Events Calendar
    • Marketing
    July 7, 2025

    Bold Business Marketing Specialist Speaks In Swindon This Week

    July 4, 2025

    How Generative AI is Giving SMEs a Marketing Edge

    • Finance
    July 14, 2025

    Busting myths about Asset Based Lending 

    July 10, 2025

    How to build a £1 million pension and ISA portfolio

    • Health & Safety
    July 1, 2025

    Temperatures Soaring: Is Your Workplace Becoming Unsafe?

    January 29, 2025

    UK takeaways guilty of shocking hygiene failures:

    • Events
    July 4, 2025

    £20k grant for female-founded SME up for grabs

    July 2, 2025

    As Seen on BBC Panorama – Brad Burton to Headline The South West Expo in Swindon

    • Community
    July 11, 2025

    Building community, one cause at a time

    June 23, 2025

    Celebrating One Year In Fairford Supporting The Community

    • Food & Drink
    June 23, 2025

    England Cricket Captain, Ben Stokes OBE, takes a stake in Spencer Matthews’ alcohol-free spirits brand, CleanCo

    June 16, 2025

    Hospitality industry risks collapse

    • Books
    April 24, 2025

    Values-Driven Professionalism: A Path to Client Loyalty

    December 2, 2024

    Banish the banshee boss: how to lead without fear – addressing the issue of fear-based management and how NOT to be this manager

    About

    SME Today is published by the same team who deliver The Great British Expos’. We have been organising various corporate events for the last 10 years, with a strong track record of producing well managed and attended business events across the UK.

    Join Our Mailing List

    Receive the latest news and updates from SMEToday.
    Read our Latest Newsletter:


    Sign Up
    X (Twitter) YouTube LinkedIn
    Most Recent Posts
    July 14, 2025

    Busting myths about Asset Based Lending 

    July 14, 2025

    Self-driving cars could hit UK roads sooner than you expect, says Heligan Group

    July 11, 2025

    New Venture Aims To Help Propel Growth For Start-Ups

    July 11, 2025

    Building community, one cause at a time

    July 10, 2025

    How to build a £1 million pension and ISA portfolio

    Categories
    • Books
    • Community & Charity
    • Education and Training
    • Environment
    • Events
    • Features
    • Finance
    • Food and Drink
    • Health & Safety
    • HR & Recruitment
    • In Profile
    • Legal
    • Marketing
    • News
    • Property & Development
    • Sponsored Content
    • Technology
    • Transport & Tourism
    • Wellbeing & Mental Health

    Copyright © 2020 SME Today.

    • ABOUT SME TODAY: THE GO TO RESOURCE FOR UK BUSINESSES
    • Editorial Submission Guidelines
    • Privacy
    • Contact
    Copyright © 2025 SME Today.
    • ABOUT SME TODAY: THE GO TO RESOURCE FOR UK BUSINESSES
    • Editorial Submission Guidelines
    • Privacy
    • Contact

    Type above and press Enter to search. Press Esc to cancel.