The cybersecurity statistics from 2020 are indeed startling, with over 30 billion records compromised in the last year alone. This is more than the previous 15 years combined.
- 40% of small businesses have experienced at least one serious cyber incident in the past 12 months.
-
The average cost to Australian businesses per breach is $276,323.
- The estimated cost to Australian businesses from cyber crime per year is $29 billion.
- The average number of days to resolve a ransomware attack is 51.
Now more than ever, organisations need to invest in robust cybersecurity strategies, including people, practices, and technology, to protect their systems and data.
Here's what you can do to protect your business from becoming a cybersecurity statistic.
People - Train your employees on how to detect and respond to cyber threats
According to the latest Notifiable Data Breaches report, 38% of all successful cyber attacks are a result of staff not being able to identify a cyber threat and not knowing how to manage them appropriately.
Cybersecurity Awareness Training for all levels of users in your organisation raises people’s vigilance on what to look for, as well as having the skills to safely take the appropriate action required if they do receive a malicious attempt.
Reputable Cybersecurity Awareness Training courses educate employees about cyber threats and attacks they may be subjected to and help them navigate through the minefield that is “cyber” and data security to ensure that they have the tools and experience to keep your organisation’s systems and data safe.
Process - Ensure Policies & Procedures are issued
Cybersecurity policies and procedures are one of the most critical tools in educating and setting expectations with your employees. They provide your people with an understanding of how to handle sensitive and personal information, safe use of company systems, and a clear process on what is required if they receive a malicious attempt.
Having policies that cover the acceptable use of IT systems, how to safely handle sensitive data and staff requirements on what they can and cannot do, all form part of this risk reduction activity.
Technology - Follow best practice guidelines
The Essential Eight is a "series of baseline mitigation strategies" recommended to organisations from the Australian Cyber Security Centre. While no single mitigation strategy can prevent cyber attacks, the following section looks into the strategies that businesses can apply to internal system security.
Broken down into three subcategories, the Essential Eight are deemed as the bare minimum strategies that all Australian organisations should implement, including:
Mitigation strategies to prevent malware delivery and execution
1. Application Whitelisting
2. Patch Applications
3. Configure Microsoft Office Macro Settings
4. User Application Hardening
Mitigation strategies to limit the extent of cybersecurity incidents
5. Restrict Administrative Privileges
6. Patch Operating Systems
7. Multi-Factor Authentication
Mitigation strategies to recover data and system availability
8. Daily backups - Ensure that a secondary copy of all of your business data is stored separately and securely which can easily be accessed and restored following the event of a
How Diamond IT can help improve cybersecurity in your organisation
Diamond IT's online or face-to-face Cybersecurity Awareness Training and Cybersecurity Healthcheck can have an immediate impact on the strength of your security. We can help you ensure your staff education programs are fit for purpose and align with best practice.
Our Business Technology Managers (BTMs) and Business Technology Consulting team are specialists in improving your internal cybersecurity and are ready to speak with you. Contact our team on 1300 307 907 today.