What Industry is your company in?
What department do you work in?
1 out of 4
Which of these are closer to your thinking?
If security is already well integrated then you might be ready to attempt Cyber Essentials.
Which of these are closer to your thinking?
If security isn't an enabler its never going to get backing and will always be avoided/circumvented.
If the answer is that security is preventing you doing your job then we've got some work to do...
Our company has the level of security required to inspire confidence in our customers
Cyber Essentials Certification would help here.
A baseline health check would also be useful.
I know where to access internal resources to help me make good security decisions
A portal with guides and templates specific to my company would help here.
I feel I have been sufficiently trained in Security at our company
A portal with some simple, cyber security online training resources would go a long way to improve this
When I learn new things about Cyber Security in the office, I implement them or propose them to be implemented
A portal with up-to-date guidelines, recommendations and current real-world issues on Cyber Security would be beneficial here.
2 out of 4
I know exactly where to go in my Company if I need a security expert
Access to a virtual, trusted advisor from Titan via an online support forum (TPEP) would be a great addition if the answer is no.
Security policies at our company are easy to follow
A set of basic security policies are required for Cyber Essentials.
Having them saved, centrally, in a 'known good', easy to follow format would be a great feature if the answer is No!
I am confident I could recognise a security issue or incident if I saw one.
Having someone to ask for guidance if there is uncertainty would be excellent.
Having a set of guidelines on how to identify an incident AND what to do next would be even better!
I am interested in increasing my own security knowledge and skills
Training, training, training.
3 out of 4
I know how to report a security incident
Raise it on TPEP and let us review it and contact the designated people.
That way is recorded, sanity checked and actioned in the correct, identified procedure.
I'd feel comfortable raising a security incident
Again, raise it with Titan, your independent security advisor & let us handle it for you.
Also, procedures for raising the incident can be found on our portal
When a security problem is found, I know it'll get fixed
If no or maybe:
Make it trackable, recordable and viewable (by the correct, identified people) through our online portal.
Record the actions via the TPEP Portal for all to see.
Senior Leadership are actively involved in our company's security
If not yes:
Provide, board level overviews of security incidents raised and resolved on a monthly basis through our portal
Senior leaders at our company care about security
If no, present the breach cost calculator result from portal.
Also, highlight key facts & threats happening in the Security arena right now from the portal
Information on our company's Cyber Security status (assessments & issues) is shared with all employees
A monthly newsletter focused on the company's industry with relevant threats and issues would be useful.
A centralised portal showing company updates (provided by designated person) would be helpful.
4 out of 4
Comments are closed here.