Almost daily reports of data breaches are published in our national press.
Just this week US Health start- up myNurse is to shut down after a data breach exposed personal health records.
In April 2022 IT governance UK reported 14.3 million records breached globally. This figure included UK entities ‘The Works’ being forced to close shops after a cyber attack and The British Army’s online recruitment portal being taken offline for over a month due to a data breach where more than 100 army recruits personal data was found being offered for sale on the dark web. The Home Office’s visa service has also apologised for an email address data breach attributed to a private contractor’s error.
It’s easy to believe these breaches only happen to larger companies or public entities as these are the stories that make the press, but Hiscox insurance reports that one small business in the UK is successfully hacked every 19 seconds. Cyber attacks are a very real threat for ALL SMEs and the 2021 Verizon Data Breach Investigations Report found that 85% of security incidents last year had a human element.
So, what can we do?
ISO 27001 is the internationally recognised standard that an organisation has a robust, comprehensive and externally audited Information Security Management system (ISMS).
ISO 27701 is the data privacy extension ISO 27001 and is a great way of demonstrating to customers and external/internal stakeholders that effective systems are in place to support compliance to GDPR and other related privacy legislation.
Functio can work with you to implement these standards (or integrate them to your existing management system) and provide a stress-free service throughout the process and beyond if ISO maintenance services are required to retain your compliance and certification.
To tackle the human element of breaches, we can also work with your employees on their Cyber awareness through interactive training that is relevant to them in their everyday roles to help build the cultural shift where information security is forefront in daily operations.
To find out more about our ISO 27001/27701 services and training courses please follow this link www.functio.co.uk/services/iso-27001
Or to discuss your businesses needs with one of our consultants please call us on 01903 740609 or contact us here.
*Sources – dbxuk.com statistics on data breaches UK 2020, IT governance.co.uk April 2022 cyber-attacks list
