Britain’s top firms and charities urgently need to do more to protect themselves from online threats, according to new research from the National Cyber Security Centre.
One in ten FTSE 350 companies said they operate without a response plan for a cyber incident and only 31% of boards receive comprehensive cyber risk information.
There has been progress in some areas when compared with last year’s health check, with 53% of company boards now setting out their approach to cyber risks and 57% of businesses having a clear understanding of the impact of a cyber-attack.
A five-year National Cyber Security Strategy was announced in November 2016, supported by £1.9 billion of transformational investment. This includes opening the National Cyber Security Centre and offering free online advice as well as training schemes to help businesses protect themselves.
The 10 Steps to Cyber Security guide sets out a comprehensive framework to help company boards manage cyber risks, from getting the basics right through to protecting their most critical assets, and the Cyber Essentials scheme sets out the technical basics all companies should have in place.
Alex Dewdney, NCSC Director for Engagement, said: “The NCSC is committed to making the UK the safest place in the world to live and do business online. We know that we can’t do this alone – everyone has a part to play. That’s why we’re committed to providing organisations with expert advice through our website and direct engagement.”