Digital Newsletter
Each week our editor Phil Alsop rounds up the most popular articles, videos and expert opinions. We compile this into a Digital Newsletter and send it straight to your inbox every week.
Digital Magazines
We'll let you know each time a new edition of Digitalisation World is released so that you're always kept up-to-date with the latest and greatest news and press releases.
Video Magazines
The Digitalisation World Video magazine contains the latest Zoom interviews with experts in the industry.
New research indicates that 93% of UK companies have experienced business-critical cyber incidents, despite many lacking robust recovery plans. In light of this, the UK government has introduced policy measures for the Cyber Security and Resilience Bill. This legislation aims to bolster national cyber defences with key provisions focusing on faster incident reporting, tighter supply chain security, and proactive risk management.
For small and medium-sized enterprises (SMEs), the importance of cybersecurity cannot be understated. "UK firms have reportedly experienced more cyberattacks than the global average," remarked Mark Appleton, Group Lead Vendor Ecosystem Development at ALSO Group. He noted a significant security gap when UK businesses are compared with global counterparts.
It is evident that cybersecurity, particularly for SMEs in digital services and critical infrastructure, should be foundational rather than an afterthought. Reacting to breaches with retrofitted solutions is no longer sustainable. Instead, companies should adopt "secure by design" principles, integrating cybersecurity into the very infrastructure and continually monitoring their security processes.
Despite heightened awareness, however, many SMEs still suffer from basic security oversights. "Third-party risks have surged," said Appleton, "with attackers exploiting overlooked vendor vulnerabilities and exposed passwords" inherent in vendor systems. The rapid shift to remote working has expanded the corporate attack surface, presenting opportunities for cybercriminals.
Retail giants like Co-op and Marks & Spencer remind us that even well-resourced organisations are susceptible to third-party risks and operational disruptions. While businesses may layer cybersecurity tools as a defensive maneuver, fragmented platforms often result in incomplete visibility and overlooked blind spots.
Treating these security challenges as temporary crises is inadequate. Appleton emphasises the value of embedding security in everyday business workflows, which often yields more benefits than reactive security measures.
On digging into foundational security solutions, organisations can often secure themselves more effectively than with layered security stacks. Embracing technologies like multi-factor authentication and zero-trust principles can close off many attack vectors. Meanwhile, businesses face challenges when stitching together disparate security tools, which can lead to complex and unclear implementations.
As Appleton pointed out, the Cyber Security and Resilience Bill should be more than just regulatory compliance; it calls for resilience to be crafted from the ground up. With SMEs in particular urged to take advantage of this moment, they must focus on embedding security inherently within their operational architecture. Unified platforms and secure-by-default service models not only ward off risks but also foster trust and enhance compliance.
