NCSC campaign gears up small businesses for remote working

Small and medium-sized businesses (SMBs) forced to adapt to remote working due to COVID-19 have been given a list of six key questions they must consider as they devise their digital plans.

The National Cyber Security Centre (NCSC) has published advice aiming to guide SMBs as they navigate the digital terrain, which may be new for many. The latest guidance, part of the wider Cyber Aware campaign, comprises six key questions businesses must consider.

These aim to identify any of areas of risk, whether from cyber intrusion to information security, to whether there are areas that SMBs can improve on, such as giving employees adequate access to critical files.

NCSC challenges business leaders to learn the 'basics' of cyber security Small businesses facing renewed attack by hackers IT Pro Panel: Coping with COVID-19

“Small and medium-sized businesses have been handed extraordinary challenges due to the coronavirus, with many now considering how they can reach their customers in new ways,” said NCSC director for national resilience and strategy Dr Clare Gardiner.

“In a society that is increasingly reliant on technology, it is vital that businesses of all sizes have effective cyber security systems in place – and the NCSC is here to help. Asking the right questions now can go a long way ensuring that organisations are appropriately protected in the future.”

The six questions outlined by the NCSC are as follows:

What technology do you use already?
Are you using cloud services?
Do you have access to IT Support?
What cyber security measures do you have in place?
Are there any regulations you need to follow?
Do you have cyber Insurance?

Among the elements that businesses must take into account are whether agreements with supplies and vendors cover an increase in demand for hardware and bandwidth to handle additional web traffic.

SMBs must, for example, examine their Service Level Agreements (SLAs) to ensure they have the resources in place that they think they do.

In addition, businesses have access to adequate IT support to ensure their employees are able to carry out their roles smoothly.

Bosses must also read up on regulations such as GDPR, with SMBs processing personal information remotely, and sensitive data such as card payments as well.

The guidance provides a resource that aims to help small businesses manage this transition from digital to physical securely, which is especially pertinent given a recent rise in cyber security incidents. The full guidance can be accessed through the NCSC website.

Keumars Afifi-Sabet is a writer and editor that specialises in public sector, cyber security, and cloud computing. He first joined ITPro as a staff writer in April 2018 and eventually became its Features Editor. Although a regular contributor to other tech sites in the past, these days you will find Keumars on LiveScience, where he runs its Technology section.