Cyber Defence in Depth Stage 1:
Detection

Understanding your threats

Understanding the threats you face and where your cyber defences are most at risk of being breached is critical to securing your organisation against cyber attacks.

Most attacks exploit two types of vulnerability: technical and human.

New technical vulnerabilities are discovered and exploited by criminals every day. Previously patched vulnerabilities can also be reintroduced into systems by updates and reconfigurations.

A programme of regular vulnerability scanning is a critical component of a risk-based approach to security: it identifies security vulnerabilities in workstations, internal and external networks, and communications equipment.

It is an automated activity that scans infrastructure targets for known vulnerabilities and misconfigurations, enabling you to bolster your defences where you most need to.

  Learn more about vulnerability scanning

Reliance on social engineering

Human security weaknesses relate primarily to our innate susceptibility to social engineering, which is why cyber criminals are so reliant on phishing. Indeed, most malware finds its way into networks via phishing attacks – usually in the form of malicious emails that contain links or attachments that download malware.

How we can help you

Staff awareness training, particularly phishing staff awareness training, is essential to mitigating the threat of cyber attacks. Training your staff to recognise phishing emails and what to do if they open them or click a malicious link is critical to keeping your organisation secure.

  Learn more about phishing attacks and how to avoid them

  Learn more about our staff awareness courses