At least a third, 38pc of Scottish businesses do not feel prepared for a cyber attack, according to a study by the Scottish Business Resilience Centre (SBRC). This comes despite two-thirds (66pc) of those surveyed believing that cyber security has become more important for their business over the past year.
The findings come one year after the UK official National Cyber Security Centre (NCSC) relaunched Cyber Essentials. That’s a UK government-backed scheme to help organisations become better protected against cyber attacks, with the cyber security specialist IASME Consortium as its partner. Businesses which become Cyber Essentials-certified can prevent or limit the fallout from up to 80pc of common cyber attacks, increasing trust among their customers.
More than 250 Scottish businesses were surveyed as part of the SBRC commissioned research; 78pc were aware of Cyber Essentials – but only about half (54pc) were aware of the benefits it can bring to an organisation. Cyber Essentials can also aid business opportunities; as some UK government contracts now require the certification; and other businesses may prefer to work with certified companies. As a result, 37pc of businesses whose company is not Cyber Essentials or Cyber Essentials Plus certified believed that they have lost out on business as a result.
Jude McCorry, pictured, CEO of the SBRC, said: “We’ve seen the number of cyber attacks rise over the past year, and a change in the type of attack as cyber criminals seek to take advantage of our increased reliance on technology while working remotely. It’s not a case of ‘if’ your systems will be attacked, but ‘when’ so it’s vital that business owners go on the offensive and prepare themselves – particularly as the majority of attacks are basic in nature and can be prevented. Learning that so many businesses aren’t confident in how they can prevent attacks is cause for concern.
“Cyber Essentials is a simple way for business owners to become more aware of their cyber processes and accreditation demonstrates to their customers and suppliers that they take their cyber resilience seriously. It’s clear from the survey that many aren’t aware of the scheme, so we’d like to take this opportunity to encourage people to look into it. Improving your cyber defences could mean the difference between your company surviving a cyber attack or losing all your systems and data.”
Jude McCorry is interviewed in the June 2021 print edition of Professional Security magazine.
Emma Philpott MBE, CEO of IASME, said: “We are pleased to be able to work in close partnership with the SBRC and support their activity with spreading awareness of cyber activity throughout Scotland. By offering crucial support and advice to Scottish businesses, they are making the UK a safer place to do business.”
