Latest News

  • Home /
  • Latest News

Mitigo - 6 cybersecurity resolutions for your firm

1 February 2021
David Fleming, Chief Technology Officer at Mitigo gives his 6 top cybersecurity resolutions for 2021.

Never in our working lives should it be clearer that you need to allocate budgets and resources to mitigate known risks. Cybercrime is now one of the most significant of those risks and the start of a new year is always a good time to start planning. So, in that context here are my suggested 2021 cybersecurity resolutions for firms:

2021 cyber resolutions.
  • Invest time to understand your risk from cyberattacks.
Cyber attacks are indiscriminate, they hit any vulnerability they can find. I suggest you get the right group of experts together to assess your risks, and then consider the controls you have in place to reduce that risk e.g., policy, training, software, support, etc. Consider paying for a vulnerability risk assessment that can guide you on where to start.

  • Get your remote connections FIT for purpose.
From March last year, cyber criminals have had a field day compromising poorly set up remote connections. In the rush to connect remotely, speed was prioritised over security. Please carry out the exercise to make sure your connections are fit for purpose in 2021. This includes logins to cloud platforms, VPN connections to the office and all versions of remote desktop control. And pay extra attention if you have allowed staff to use their own computers.

  • Stop assuming that your IT support have this covered.
The firms that got hit last year still assumed this. In our experience IT do not look after this because they are not risk or cyber experts and you are frankly not paying them to shoulder this responsibility. This assumption can be a blocker to firms acting.

  • Change employee habits through training, testing and simulation.
All the incidents we investigated last year had an element of human error. Good resolutions change bad habits. This includes link-clicking, alert-ignoring, update-delaying, data-syncing… I could go on. Best practice is to follow up training with simulated attacks on staff, e.g., a pretend email phishing campaign, to strengthen a defensive culture.

  • Write and communicate a mobile phone policy.
Do not forget mobile phones. Personal and work mobile use can be necessary for business. But have you got a policy on it, with the necessary controls in place? Cyber criminals increasingly rely on mobile phones as an entry point into company systems. Once you have agreed what your policies are you will need to configure your technology to support your approach.

  • Prove to yourself that your back-up actually works.
Most back-ups that we check will not survive a ransomware attack because they are poorly configured. Have you ever had this checked? And is it still operating correctly in this remote working world? Staff may have started storing files locally for convenience or even started using third-party storage. Have you still got control of your data footprint?

Obviously, this is not an exhaustive list, but I am hoping it will get you thinking about this subject because it isn’t going away. Indeed, the cyber criminals are more organised than ever, and their attacks are increasingly sophisticated. It is a lucrative business for them, so they invest money and resources into constantly improving their game. I suggest you do the same.

Paradigm has partnered with Mitigo to offer technical and cyber security services to our members. 

Take a look at Mitigo’s full service offer at https://www.consultparadigm.co.uk/strategic-partners/mitigo 

For more information contact Mitigo on 0161 8833 626 or email [email protected] 


 

16 December 2021

Invesco - Investment Intelligence Seminars 2021 - On demand


14 December 2021

Invesco - 2022 investment outlooks


10 December 2021

Prudential: Case study 3 - Funding for decumulation


8 December 2021

intelliflo - Uncovering the advice gap; the Advice Map of Britain


29 November 2021

Just WIN, WIN, WIN... Thank you


26 November 2021

Blackfinch Energy acquires largest solar farm to date


26 November 2021

ESG at Invesco


26 November 2021

Prudential - International Portfolio Bond – helping your clients help the planet


16 November 2021

Octopus On Film - Diversity and inclusion


3 November 2021

What investors want: Our research on client perceptions of ESG investing


3 November 2021

Mitigo - Why cyber risk management is not the same as IT support


28 October 2021

intelliflo - Why you shouldn’t discount technology for older clients


28 October 2021

Prudential - The year of 2.5 budgets


25 October 2021

Invesco - Small steps to a better future


15 October 2021

Prudential - ISA Case study 1 – Managing volatility with cash


14 October 2021

Prudential On Film - ESG


12 October 2021

intelliflo - How technology will impact the future of paraplanning and advice


11 October 2021

Just: Winners of Just Group vulnerable customer awards announced


11 October 2021

Prudential: ESG Policy for the Risk Managed Passive and Risk Managed Active fund ranges


7 October 2021

Aegon - Thinking ahead: Social care funding and intergenerational advice


13 September 2021

Invesco - Investment Intelligence Seminars 2021 – register now


8 September 2021

Blackfinch Renewable European Income Trust September 2021


7 September 2021

intelliflo - Five benefits of a client portal


7 September 2021

Prudential - Our 'Future-proofing Fridays' seminars are coming to you virtually


6 September 2021

Prudential - New PruFund Support


26 August 2021

PruFund range of funds - EGR and UPR announcement


26 August 2021

intelliflo - The power of deep integrations


25 August 2021

PruFund Planet - Support for your ESG client conversations


23 August 2021

Prudential - PruFund Planet - How are the funds managed?


20 August 2021

Prudential - Download the app for automatic daily valuations through intelliflo


12 August 2021

Prudential - The Great Reset: Why it's time to invest for a sustainable recovery


11 August 2021

Prudential - Planning for education?


6 August 2021

Invesco - It's more about growth than inflation


6 August 2021

Prudential - Sir Isaac Newton’s first law of motion and ESG


3 August 2021

Prudential - PruFund Planet - The power to create the world your clients want


2 August 2021

Prudential - Our 'PruFund Planet - a world of good' seminar is coming to you virtually


21 July 2021

Just on Film - Vulnerable Clients


19 July 2021

Prudential - Pep up your ISA planning webinar


7 July 2021

intelliflo - Future-proofing your technology


2 July 2021

Prudential - Our 'Onshore... Offshore - you decide' seminar is coming to you virtually


1 July 2021

Prudential - New AKG financial strength report and due diligence support


24 June 2021

Prudential - A Spotlight on Asian Bonds


24 June 2021

Invesco - Emerging markets: Innovation unleashed


21 June 2021

intelliflo - Four ways technology can improve client engagement


16 June 2021

Have you looked at our Retirement Account recently?


9 June 2021

Prudential - The importance of sequencing of returns risk for clients taking an income from their pension


8 June 2021

Tax Efficient Review - Updated independent reviews now available


3 June 2021

Prudential - Could our Risk Managed 1 and 2 funds help in de-risking?


2 June 2021

Blackfinch: Adapt IHT portfolios - Q1 Trading Activity


2 June 2021

Prudential: Upcoming Webinars June


28 May 2021

Prudential - PruFund range of funds - EGR and UPA announcement


27 May 2021

Prudential - Intergenerational Planning


20 May 2021

Prudential - Do your clients dream of becoming millionaires?


17 May 2021

intelliflo - Using data to drive client engagement


17 May 2021

Invesco - My three rules of investing


17 May 2021

Prudential - Maximising ISA Allowances


14 May 2021

Prudential - Retirement Account & onshore bond bulk valuations added for intelliflo users


4 May 2021

Just - New awards for excellence in customer vulnerability. Enter now!


4 May 2021

Prudential - Are your clients ‘SKI’ing?


29 April 2021

Prudential - What do clients most want advice on, following Covid-19?


27 April 2021

Prudential - Our Future of Pensions Advice seminars are coming to you virtually


22 April 2021

Prudential - How comfortable are families with using the same adviser?


21 April 2021

intelliflo - One year on: advice industry powers on with more clients and greater efficiencies


16 April 2021

Prudential - The Defined Benefit Transfer Debate


15 April 2021

Prudential - A 5.5 trillion pound opportunity, worth exploring!


9 April 2021

Invesco - Bonds: shaken not stirred


7 April 2021

Welcome to intelliflo


7 April 2021

Prudential - What’s stopping clients transferring wealth?


1 April 2021

Prudential - NEW and exclusive intergenerational research


31 March 2021

Prudential - Submit ISA business right up to the tax year end


24 March 2021

Prudential - We’re removing the stress from ISA investments


18 March 2021

Prudential - Can our Retirement Account save you time?


17 March 2021

Blackfinch - Firms fit to thrive


10 March 2021

Prudential - What makes our Prudential ISA different from the rest?


10 March 2021

Just: Drawdown's secret weapon


5 March 2021

Invesco - Online training: Understanding ESG


5 March 2021

Prudential - Les' Budget Update


3 March 2021

PruFund range of funds - EGR and UPA announcement


3 March 2021

Prudential - Suport for your clients' pension planning


1 March 2021

Aegon - What the Spring Budget could mean for your clients


25 February 2021

Prudential - Cash is king! Or is it?


19 February 2021

Prudential - Planning for tax year end? Your pension planning questions answered


18 February 2021

Prudential - EGR and Budget webinars


17 February 2021

Prudential - 2021 and beyond – a diversified fund range of funds to help match client’s needs


12 February 2021

Prudential - Managing future risk - virtual seminars


1 February 2021

Mitigo - 6 cybersecurity resolutions for your firm