Cyber Security Free Resources

 

Cyber Health Check

Download this case study to see how a market research firm achieved a higher level of confidence in its security posture with IT Governance’s Cyber Health Check.

Download now

Saracens Rugby Club (Cyber Security as a Service)

Saracens Rugby Club needed a broad package of consultancy support to help it meet a wide range of cyber security, privacy and regulatory requirements, such as those under the GDPR and PCI DSS.

Download now

SOC 2 Audit Readiness Assessment

This case study outlines how IT Governance conducted a readiness assessment and developed a roadmap of recommendations to help this firm achieve compliance with the requirements of the SOC 2 TSP.

Download now

 

Assured Security – Getting cyber secure with penetration testing

Assured Security – Getting cyber secure with penetration testing

Download this paper to find out how to keep your organisation’s information and systems secure with effective penetration testing.

Download now

Cyber Essentials – A guide to the scheme

Cyber Essentials – A guide to the scheme

Download this paper, updated for v3.0/Evendine, to discover what Cyber Essentials is, the benefits of certification, how to meet the scheme’s requirements and how the certification process works.

Download now

Cyber Incident Response Management – A beginner’s guide

Cyber Incident Response Management – A beginner’s guide

Download this paper to learn how to effectively prepare for cyber incidents so you can mitigate their impact and protect your organisation.

Download now

Cyber Security and ISO 27001 – Addressing the cyber threat landscape

Cyber Security 101 – A guide for SMEs

Looking for an introduction to cyber security? Download ‘Cyber Security 101 – A guide for SMEs’ to find out how to get started with the basics of cyber security while keeping costs at a minimum.

Download now

 

Free PDF download: Cyber Security and Business Resilience – Thinking strategically

Cyber Security and Business Resilience – Thinking strategically

Suffering a cyber attack is a matter of when, not if. Organisations need to combine cyber security with business resilience to be able to recover effectively.? Download this paper to understand what elements to take into account as you plan your defences, the value of thinking resiliently, risk assessment basics, and more.

Download now

Cyber Security and ISO 27001 – Reducing your cyber risk

Cyber Security and ISO 27001 – Reducing your cyber risk

Download this green paper now to learn how smart organisations are protecting their reputations and critical information assets while winning new business with ISO 27001 certification. 

Download now

Mobile Device Security – Adapting to flexible working

Mobile Device Security – Adapting to flexible working

Mobile devices enable us to work on the go or from home with ease, but come with a host of challenging security risks. Download this paper to discover some of the most common risks and a range of measures to help mitigate them.

Download now

Ransomware – Threats and mitigation

Ransomware – Threats and mitigation

Ransomware is one of the biggest threats to organisations today. In minutes, it can spread through a network and cripple even well-prepared organisations. Read this paper to discover the varieties of ransomware and how they work, what you can do to prevent a ransomware attack, and more.

Download now

 

2021 Data Breaches and Cyber Attacks Report

Free Report: 2021 Data Breaches and Cyber Attacks Report

We’ve tracked all the publicly disclosed data breaches and cyber attacks of 2021, and have put together a report detailing the amount of data lost, the main causes of data breaches, the top most frequently breached sectors and more.

Download now

 

A guide to cyber security for IT support teams

A guide to cyber security for IT support teams

In this guide, we take a closer look at the challenges that IT support teams face and the steps they can take to protect their organisations.

Download now

A guide to cyber security for the financial services sector

A guide to cyber security for the financial services sector

In this guide, we take a closer look at the ways the financial services sector is being targeted and what you can do to protect your organisation.

Download now

The cyber security implications of the Russian invasion of Ukraine – brochure

The Cyber Security Implications of the Russian Invasion of Ukraine

Download our brochure to find out how the Russia-Ukraine conflict is expanding beyond Ukraine’s borders and what your organisation can do to implement a cyber-defence-in-depth strategy.

Download now

12 Cyber Security Questions to Ask Your CISO

12 Cyber Security Questions to Ask Your CISO

Our team of cyber security experts have identified the top 12 questions that you need to ask your CISO to ensure all areas of cyber security are covered, and will discuss them in this brochure.

Download now

Cyber Health Check – Uncover your cyber security weak spots before attackers do

Cyber Health Check – Uncover your cyber security weak spots before attackers do

IT Governance can help you identify your weakest security areas and take appropriate action by following our practical recommendations in this brochure.

Download now

Cyber Security as a Service

Cyber Security as a Service

Cyber Security as a Service leaves you with the assurance you’ve always wanted, helping you to be prepared and protected from cyber threats. Download this free brochure to learn more about this subscription service. 

Download now

12 Cyber Security Questions to Ask Your CISO

Cyber Security Risk Scorecard

Download our free Cyber Security Risk Scorecard and answer 21 key questions to get an indication of your organisation’s overall level of cyber security risk.

Download now

Hybrid Working - Managing cyber security and data privacy risks

Hybrid Working – Managing cyber security and data privacy risks

Whether your staff work in the office, at home, in shared working spaces or anywhere else, you face numerous additional risks to the confidentiality, integrity and availability of your corporate information. This brochure explains what those risks are and how IT Governance can help you manage them

Download now

 

14 Cyber Security Statistics for SMEs

14 Cyber Security Statistics for SMEs

Many SMEs believe that only large organisations are targeted by cyber criminals. Our free infographic demonstrates this risk, as it highlights 14 cyber security statistics for SMEs.

Download now

 List of data breaches in 2021

List of data breaches in 2021

With the Covid-19 pandemic and a sudden shift to remote working, many organisations became open to vulnerabilities, which cyber criminals were quick to capitalise on.

Download now

Top 5 remote working cyber security tips

Top 5 remote working cyber security tips

Hastily deployed remote working arrangements have introduced critical risks during the COVID-19 lockdown. We’ve compiled a list of the top 5 remote working cyber security risks you should be aware of.

Download now

title

Working from home top tips

We’ve rounded up a selection of useful tips from IT Governance employees and our security experts on how you can get used to working from home, and keep cyber secure. 

Download now

What are the major types of cyber attack?

What are the major types of cyber attack?

With cyber threats constantly evolving, cyber security can be a complex undertaking. Download our free infographic to learn more about the major types of cyber attacks. 

Download now

What is ransomware and how can I protect my business?

What is ransomware and how can I protect my business?

Ransomware is a type of malicious programme that demands payment after launching a cyber attack on a computer system. For a quick guide to ransomware and what you can do to protect your business, download our free infographic.

Download now

What is ransomware and how can I protect my business?

What is ransomware and how can I protect my business?

Ransomware is a type of malicious programme that demands payment after launching a cyber attack on a computer system. For a quick guide to ransomware and what you can do to protect your business, download our free infographic.

Download now

Minimise the risk of phishing attacks by assessing and educating end users

Minimise the risk of phishing attacks by assessing and educating end users

Phishing is a type of social engineering attack in which cyber criminals trick victims into handing over sensitive information or installing malware. Download our free infographic for more information on phishing, types of phishing attacks and more.

Download now

The Rise of Hybrid Working

The Rise of Hybrid Working

As many organisations make the permanent shift towards hybrid working, we take a look at the statistics behind remote working before, during and post-pandemic, along with the benefits and challenges of working from home.

Download now

How to Keep your Hybrid Workforce Secure – In Six Steps

How to Keep your Hybrid Workforce Secure – In Six Steps

Do you know how to keep your staff secure in and out of the office? We outline the six steps that you can take to keep your hybrid workforce protected.

Download now

Cyber Security: The must haves

Cyber Security: The must haves

Knowing where to start with your organisation’s cyber security can be daunting and confusing. For a quick guide to cyber security and what you can do to protect your business, download our free infographic.

Download now

 

Upcoming webinars

Stage 2 – Protection: The second layer of your cyber defence-in-depth strategy

Date: Thursday, 29 September 2022

Time: 3:00 – 3:30pm (BST)

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance and GRC International Group

Protecting an organisation from the increasing threat of cyber attacks can be challenging. Employees are a crucial line of defence, and ensuring they know their security responsibilities and how to spot a cyber attack is critical.

Depending on the organisation, it may not need to implement extensive security measures, but at least a base level of security is essential. Certification to security schemes can protect an organisation from the most common cyber threats and publicly demonstrate its commitment to cyber security.

Read more

Stage 1 – Detection: The first layer of your cyber defence-in-depth strategy

Date: Thursday, 25 August 2022

Time: 3:00 – 3:30pm (BST)

Delivered by: Alan Calder, founder and executive chairman, IT Governance & GRC International Group

Understanding the threats you face and where your cyber defences are most at risk of being breached is critical to securing your organisation against cyber attacks.

By implementing detection measures your can identify security flaws, enabling you to bolster defences where needed.

Read more

On-demand cyber security webinars

Flash briefing: The growing importance of implementing a cyber-defence-in-depth strategy

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance 

With new vulnerabilities being identified constantly, understanding your organisation’s security weaknesses is paramount. The current political climate also means that organisations have been urged to bolster their cyber security defences and tactics as the Russian invasion of Ukraine continues.

Get peace of mind that your organisation is safe and secure with a cyber-defence-in-depth strategy. This should involve regularly testing your firewalls and external-facing services and training your staff to identify and respond to phishing attacks.

Read more

CyberComply – Future-proof your compliance investment

Delivered by:

  • Gary Baxter – Customer Success Manager, Vigilant Software
  • Tom Reading – Business Development Manager, Vigilant Software
  • Alan Calder – Founder and Executive Chairman, IT Governance

Most organisations need help complying with various legal requirements such as the GDPR (General Data Protection Regulation), NIS Directive, or the PCI DSS, with many organisations unable to bring in expert consultants to deliver the work.

To reduce compliance costs, organisations can benefit from software designed to help your team understand your compliance requirements, from risk assessments to data breach reporting.

This webinar provides insight into the challenges organisations face within the current threat landscape.

Read more

Webinar: 20 years in cyber security

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance and GRC International Group

IT Governance is celebrating 20 years in business. 20 years in which organisations’ approaches to cyber security have continually evolved – and with ever-evolving risks lurking in cyberspace, it is imperative that businesses and individuals are vigilant and aware of the threats.

In this digital era, data has become a treasure trove for cyber criminals. Even obscure information has a distinct value, which criminals can steal, damage or misuse.

Read more

Webinar: New cyber incident reporting obligations that you need to be aware of in the EU and US

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance & GRC International Group

On 1 March, the US Senate passed the Strengthening American Cybersecurity Act of 2022, which requires organisations to report any personal data breaches within 72 hours of the incident taking place. This aligns with the requirements of the GDPR.

In addition, the proposed EU corporate accountability rules require directors to take on new data protection responsibilities.

Read more

On-demand cyber security webinars

Flash briefing: Cyber warfare and the threat of escalating cyber aggression

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance & GRC International Group

As Russia continues to focus on the battle for Ukraine by disrupting and destroying Ukrainian computers and networks, NATO states are taking the threat of Russian cyber aggression very seriously and have issued a number of warnings for organisations to tighten their security.

Read more

Webinar: Data breaches – before and after they occur

Delivered by:

  • Cliff Martin, Cyber Incident Responder, GRCI Law
  • John Potts, Operations Director, GRCI Law

As we recover from the pandemic, hybrid working has proven hugely popular with individuals and organisations. However, IBM’s Cost of a Data Breach Report 2021 found that the average cost of data breaches at organisations with more than 80% of employees working remotely was $5.54 million (about £4.1 million) – $1.3 million (about £0.96 million) more than the overall average of $4.24 million (about £3.13 million).

Read more

Flash briefing: The cyber security implications of Russia invading Ukraine

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance and GRC International Group

The tensions between Russia and Ukraine have led to reports warning UK organisations to improve their cyber security defences, as fears grow that cyber attacks linked to the conflict could move beyond Ukraine’s borders.

Read more

Panel discussion: How to prevent and respond to the most successful vulnerabilities exploited by attackers

Panellists:

  • Adam Seamons, Systems & Security Engineer, GRC International Group
  • James Pickard, Security Testing Manager, IT Governance
  • Cliff Martin, Cyber Incident Responder, GRCI Law

Existing and emerging vulnerabilities exploited by cyber criminals hit the headlines daily. With cyber criminals using a combination of web-based exploit kits and planned and targeted sophisticated attacks, organisations are under more pressure than ever to put in place controls and measures to identify threats and reduce their impact.

Read more

Panel discussion: Last year’s privacy and cyber security lessons and how to prepare for an unpredictable 2022

Panellists:

  • Alan Calder, Founder and CEO of IT Governance
  • John Potts, Operations Director, GRCI Law
  • Cliff Martin, Incident Responder, GRCI Law

The challenges of the COVID-19 pandemic, the large-scale shift to remote working and emerging cyber security threats created some of the most demanding operating conditions for organisations ever seen.

With 2021 behind us, it is important to reflect on how cyber security and privacy incidents affected organisations worldwide and the lessons they can learn to operate safely in an unpredictable 2022.

Read more

Flash briefing: How to avoid data breaches caused by human error

Delivered by: Alan Calder, Executive Chairman of IT Governance

According to Verizon’s 2021 Data Breaches Investigations Report, 85% of data breaches involved a human element. It’s clear that many organisations are struggling to handle the threat that their own staff present.

With staff moving to remote or hybrid working during the pandemic, the challenge of containing human error is greater than ever. Data breaches can be caused by something as simple as accidentally emailing an internal document to a client.

Read more

Webinar: The hidden consequences of email security in the ‘new normal’

Delivered by:

  • Alan Calder, Founder and Executive Chairman, IT Governance
  • Paul Holland, CEO, Beyond Encryption

IT Governance joins forces with Beyond Encryption to provide insight into how you can improve your email security practices and reduce the number of data breaches resulting from human error.

Read more

Flash briefing: 20 minutes on how to prevent phishing attacks

Delivered by: Alan Calder, Founder and Executive Chairman of IT Governance

According to Verizon’s 2021 Data Breach Investigations Report, 43% of data breaches in the past year occurred due to phishing attacks and/or pretexting.

IBM’s 2021 research into the cost of a data breach ranks phishing attacks as the second most expensive cause of data breaches, costing businesses an average of $4.65 million.

Read more

FLASH BRIEFING: How to Navigate and Implement a Successful Hybrid Workforce

Delivered by: Alan Calder, Founder and Executive Chairman, IT Governance

A hybrid working model gives staff the choice to work in an office, at home or in shared working spaces.

With 90% of organisations intending to shift to hybrid working where possible after the COVID-19 pandemic, remote workers will be even more susceptible to cyber threats, in some cases creating huge cyber security and privacy compliance challenges.

Read more

FLASH BRIEFING: Navigate to Cyber Safety – Security Testing

Cyber crime has thrived during the pandemic, with the move to remote working offering new opportunities for attackers to exploit human vulnerabilities and digital systems. Last year, 85% of breaches involved a human element, and attacks on web applications represented 39% of all breaches.

It is therefore more important than ever for organisations to understand how secure their network is against external threats and cyber attacks.

Read more

FLASH BRIEFING: Navigate to Cyber Safety – Cyber Incident Response

Delivered by: Cliff Martin, Cyber Incident Responder

Watch this 20-minute flash briefing, during which our cyber expert, Cliff Martin will dissect one of the major cyber attacks that have hit the headlines this month. He will offer a high-level overview and practical advice on how these attacks could have been mitigated – and what your organisation needs to do to avoid suffering the same fate.

Read more

FLASH BRIEFING: Navigate to Cyber Safety – Ransomware

Presenters:

  • Alan Calder, Founder and Executive Chairman
  • James Pickard, Security Testing Manager
  • Cliff Martin, Cyber Incident Responder

61% of organisations have been hit by a ransomware attack over the past 12 months (Mimecast 2021).

Join this 20-minute flash briefing, during which our team of cyber experts will dissect two of the major ransomware attacks that have hit the headlines this month. They offer a high-level overview and practical advice on how these attacks could have been mitigated – and what your organisation needs to do to avoid suffering the same fate. Our experts examine:

Read more

Cyber incident response readiness for SMEs

Presenters: Geraint Williams, CISO, GRC International Group

According to IBM’s Cost of a Data Breach Report 2020, it takes an average of 280 days to identify and contain a breach. The average total cost of a breach now stands at $3.86 million (about £2.74 million), but the report suggests that organisations that have implemented a cyber incident response plan to identify and contain the impact of a cyber incident within 200 days can reduce their financial damage by $1.12 million (about £794,000).

Read more

7 cyber security risks and how to overcome them

Presenters:

  • Geraint Williams, CISO, GRC International Group
  • Adriaan Bekker, Technical Director, Softwerx Ltd

In a recent data analysis of 20 UK regions, the ONS (Office for National Statistics) revealed that Cambridgeshire suffered the sharpest increase in cyber crime between 2016 and 2018, with the number of cases escalating by 49% (from 2,789 to 4,155).

The COVID-19 pandemic has exacerbated the problem, with cyber crime levels rising exponentially during lockdown as criminals targeted remote workers with phishing, scams and malware.

Read more

Cyber security and the human threat: what SMEs can do

Presenters:

  • Geraint Williams, CISO, GRC International Group
  • Stefanie Retfalvi, Principal Consultant, Learning Design, IT Governance

At the start of the COVID-19 pandemic, as more staff transitioned to remote working, cyber security experts cautioned organisations about their reduced ability to detect and contain cyber incidents, advising them to implement further security measures. IBM’s Cost of a Data Breach Report 2020 backs their claims, suggesting that where employees work from home, the cost of a data breach increases by $137,000 (about £97,000).

Addressing the human element of cyber security is key to an organisation’s survival. The NCSC (National Cyber Security Centre) says that more than 60% of small and medium-sized organisations globally that suffer a major cyber attack close their doors within 12 months. It’s therefore vital that organisations – and their staff – know how to recognise and respond to an incident.

Read more

Cyber threats and the risks they pose to SMEs

Presenter: Geraint Williams, CISO, GRC International Group

With 60% of small and medium-sized organisations globally closing their doors within 12 months of suffering a major cyber attack, cyber security awareness is vital to their survival.

Addressing complex security issues can be challenging for SMEs. It is essential to ensure your organisation does not waste time and resources, while reducing the likelihood of underestimating or overlooking risks that could cause significant damage.

Read more

Online panel discussion – COVID-19 – Risks and opportunities post-lockdown

With restrictions to contain the COVID-19 pandemic easing and the world coming out of lockdown, many organisations are now preparing for a phased return to work.

As the lockdown comes to an end, organisations will inevitably face increased pressure to take the necessary measures to handle privacy and cyber risks – and to avoid fines for non-compliance – as they re-establish operations.

Read more

Online panel discussion – COVID-19 Cyber Risk and Data Privacy Response

The sudden global shift to remote working has brought unprecedented changes to social and work habits, and introduced new cyber risks and data privacy challenges that affect the way organisations need to operate.

As most employees are working from home, they may be accessing and processing information outside the organisation’s normal security perimeter, which increases the risk of a data breach. With cyber criminals employing sophisticated phishing tactics and malicious websites to target staff by impersonating credible information sources around COVID-19, organisations need to implement security measures to address these challenges.

Read more

Managing cyber security and privacy risks with inadequate resources

 

The multi-faceted aspects of cyber security risks and data privacy regulations have led to an increased demand for scarce cyber security skills.

With the cyber security skills gap continuing to increase, many organisations are struggling to find the expertise they need to address their cyber security challenges.

Read more

Surviving tomorrow’s cyber-attacks: resilience and cost-reduction

Initiating a cyber resilience strategy requires identifying the high-value assets within your organisation and their associated risks to strategically target areas for improvement. This webinar will help you understand how to start building cyber resilience.

Read more

Cyber Essentials plays a key role in the Cyber Resilience Strategy for Scotland and the rest of the UK

Cyber attacks are increasing in frequency and severity to such an extent that it’s no longer enough to trust that you can defend against every potential attack. Statistics suggest that it is inevitable that your organisation will suffer a data breach.

Read more

Cyber incident response management webinars on demand

Cyber incident response management: an essential tool for the GDPR and NIS Directive

 

The first webinar in the series explains general incident response concepts. It focuses on the importance of incident response within the General Data Protection Regulation (GDPR) and Directive on security of network and information systems (NIS Directive (now transposed in UK law as the NIS Regulations 2018)) frameworks and delivers an overview of the CIRM process.

Read more

Cyber incident response management: what you need to know

The second webinar focuses on the incident response process itself. It explains the terminology used and presents and describes different types of cyber attacks to give a clearer understanding of how vulnerabilities are exploited and what strategies are used to minimise risk.

Read more

Cyber incident response management: planning and implementation

The third and final webinar deals with incident response planning consideration and implementation, and the reporting requirements of the incident response system.

Planning is based on an organisation’s infrastructure topology and risk exposure, and implementation entails the development of an incident response team and test scenarios.

Report generation is the end product of the incident response process. It provides the audit trail details of an incident and is a requirement of all major regulatory frameworks and compliance standards.

Read more

 

Free e-book: The Basics – Security Edition

Free e-book: The Basics – Security Edition

This free e-book is a collection of our most popular content covering cyber security, information security, data protection and staff awareness.

It provides a comprehensive introduction to the security threats you face and the ways you can protect yourself.

You will discover the most common types of cyber attack, the risks of working from home, the data protection policies and processes you must implement, the way scammers target your employees, and much more

Download now

This website uses cookies. View our cookie policy
WIN £100