Cyber Security Best Practices for Australian Small and Medium sized Businesses (SMBs)
Unfortunately many Australian SMBs don’t know where to start when it comes to cyber security. It used to be as simple as installing a firewall, anti-virus software and ‘off you go’, but with the shift to the cloud and working remotely, it’s not so simple.
In the Australian Government’s Australian Signals Directorate (ASD) Australian Cyber Security Centre’s (ACSC’s) most recent report, the Government found that whilst 80% of Australian SMBs rated cyber security as ‘important to very important’, almost half of SMBs rated their cyber security understanding as ‘average’ or ‘below average’ and had poor cyber security practices.
Key Findings
almost half of SMBs rated their cyber security understanding as ‘average’ or ‘below average’ and had poor cyber security practices.
Where to start?
The Australian Government has published a cyber security framework called ‘Essential Eight Maturity Model’ which makes it harder for adversaries to compromise systems.
Implementing the Essential Eight proactively can be more-cost effective in terms of time, money and effort than having to respond to a large-scale cyber security incident.
What are the Essential Eight?
The following items comprise the Essential Eight and to practically implement the Essential Eight, the ACSC have defined four maturity levels ranging from Zero to Three, which gauge an organisation’s ability to mitigate a cyber attack.
Overall, most of these are about staying up-to-date and limiting the actions that malware can perform. This is because malware typically hijacks your privileges to infect and corrupt. The more access it has, the more damage it can do.
Have ahink about your business and how you’re tackling the Essential Eight.
If you’ve got a gap, then start there. If you’ve got each item covered, think about how you can advance your security to mature your posture.