Why is this attack different?
A number of organisations across a range of industries have been affected by the recent NHS ransomware attack. Europol has estimated that there are more than 200,000 victims of the attack in 150 countries since it began, describing it as ‘unprecedented in its scale’.
What should I do now?
Seven principles for governance of cyber security risk
A comprehensive and practical approach is needed to better manage cyber security risk. Seven principles can help organisations structure their governance of cyber security risk. Adopting these practical steps will help boards and management debate and make the tough decisions needed to develop an adequate response to the threats they face.
1. Real understanding of exposure
2. Appropriate capability and resource
3. Holistic framework and approach
4. Independent review and test
5. Incident preparedness and track record
6. Considered approach to legal and regulatory environment
7. Active community contribution