Latest News

  • Home /
  • Latest News

Mitigo - 6 cybersecurity resolutions for your firm

1 February 2021
David Fleming, Chief Technology Officer at Mitigo gives his 6 top cybersecurity resolutions for 2021.

Never in our working lives should it be clearer that you need to allocate budgets and resources to mitigate known risks. Cybercrime is now one of the most significant of those risks and the start of a new year is always a good time to start planning. So, in that context here are my suggested 2021 cybersecurity resolutions for firms:

2021 cyber resolutions.
  • Invest time to understand your risk from cyberattacks.
Cyber attacks are indiscriminate, they hit any vulnerability they can find. I suggest you get the right group of experts together to assess your risks, and then consider the controls you have in place to reduce that risk e.g., policy, training, software, support, etc. Consider paying for a vulnerability risk assessment that can guide you on where to start.

  • Get your remote connections FIT for purpose.
From March last year, cyber criminals have had a field day compromising poorly set up remote connections. In the rush to connect remotely, speed was prioritised over security. Please carry out the exercise to make sure your connections are fit for purpose in 2021. This includes logins to cloud platforms, VPN connections to the office and all versions of remote desktop control. And pay extra attention if you have allowed staff to use their own computers.

  • Stop assuming that your IT support have this covered.
The firms that got hit last year still assumed this. In our experience IT do not look after this because they are not risk or cyber experts and you are frankly not paying them to shoulder this responsibility. This assumption can be a blocker to firms acting.

  • Change employee habits through training, testing and simulation.
All the incidents we investigated last year had an element of human error. Good resolutions change bad habits. This includes link-clicking, alert-ignoring, update-delaying, data-syncing… I could go on. Best practice is to follow up training with simulated attacks on staff, e.g., a pretend email phishing campaign, to strengthen a defensive culture.

  • Write and communicate a mobile phone policy.
Do not forget mobile phones. Personal and work mobile use can be necessary for business. But have you got a policy on it, with the necessary controls in place? Cyber criminals increasingly rely on mobile phones as an entry point into company systems. Once you have agreed what your policies are you will need to configure your technology to support your approach.

  • Prove to yourself that your back-up actually works.
Most back-ups that we check will not survive a ransomware attack because they are poorly configured. Have you ever had this checked? And is it still operating correctly in this remote working world? Staff may have started storing files locally for convenience or even started using third-party storage. Have you still got control of your data footprint?

Obviously, this is not an exhaustive list, but I am hoping it will get you thinking about this subject because it isn’t going away. Indeed, the cyber criminals are more organised than ever, and their attacks are increasingly sophisticated. It is a lucrative business for them, so they invest money and resources into constantly improving their game. I suggest you do the same.

Paradigm has partnered with Mitigo to offer technical and cyber security services to our members. 

Take a look at Mitigo’s full service offer at https://www.consultparadigm.co.uk/strategic-partners/mitigo 

For more information contact Mitigo on 0161 8833 626 or email [email protected] 


 

30 December 2024

An evolving industrial landscape: post-election insights from the US


30 December 2024

The outlook for 2025


10 December 2024

Beyond the Budget – Unpacking IHT changes for your clients


4 December 2024

Triple Point Venture VCT - Early bird discount extended


3 December 2024

A Postcard from Boston: Onshoring, AI and the regulation of water


3 December 2024

The second Nucleus UK Retirement Confidence Index


25 November 2024

Investing alongside science to deliver a sustainable world


11 November 2024

Triple Point - What Budget changes to Business Relief mean for clients


4 November 2024

Edwards Lifesciences: shaping the future of cardiac care


28 October 2024

Gene therapy is set to change the face of medicine


22 October 2024

What China’s economic stimulus measures could mean for investors


16 October 2024

Triple Point - Venture VCT announces 2p tax-free dividend


7 October 2024

Triple Point - VCTs: a powerful way to help clients pay less income tax


2 October 2024

The next smart move for your clients


26 September 2024

Puma VCT 13 launches new £50m fundraise


24 September 2024

3 steps advisers can take to close the gender pension gap


19 September 2024

Puma Investments- Launches Puma AIM VCT


18 September 2024

M&G Wealth - Six ways to keep clients invested for long-term success


10 September 2024

M&G Wealth - Dash to cash: why it pays to think longer-term with your client’s money


6 September 2024

Join the Defaqto Future of Advice conference


2 September 2024

Triple Point - Understanding Venture Capital Trusts (VCTs)


28 August 2024

M&G Wealth - Keeping it smooth since 2004


19 August 2024

Prudential - Cost reductions and changes to our Strategic Asset Allocation


15 August 2024

Liontrust - Building a sustainable future with social housing


15 August 2024

Puma Investments - Join our CPD webinar: Closing the gaps: IHT and Estate planning featuring Tony Wickenden


7 August 2024

Liontrust - Plugging into the energy transition


6 August 2024

Defaqto - The Future of Advice - The Defaqto Adviser Conference


26 July 2024

Hello Kitty: A big cat in the investment universe?


24 July 2024

Liontrust – A postcard from Japan: enabling the sustainable transition


18 July 2024

Liontrust - Does a brighter future for housebuilding lie ahead?


16 July 2024

Triple Point – Holistic Estate Planning Strategy for Clients


8 July 2024

Triple Point – Join our CPD webinar: helping investors plan for big life events


1 July 2024

Intergenerational wealth planning for difficult times


24 June 2024

Liontrust Sustainable Investment: Annual Review 2023


19 June 2024

Investing in the energy transition


18 June 2024

Triple Point is partnering with ESG Accord to host a webinar: "A Practical Guide to SDR and Investment Labels for Advisers."


17 June 2024

Latest PruFund monthly investment updates


13 June 2024

Defaqto MPS Comparator: the UK's only accurate MPS performance tool


12 June 2024

Hear about Triple Point Venture VCT - 18th June 2024


6 June 2024

The Nucleus Retirement Confidence Index


24 May 2024

Join us for our Breakfast Briefing with Foresight! June 4th at 9:30am


17 May 2024

Looking forward with optimism


8 May 2024

The retirement income advice red paper


8 May 2024

Liontrust Views: Why smaller can be beautiful for US equities


7 May 2024

CPD Horizon Series: Tax planning for life’s key events


18 April 2024

Liontrust: Opportunities from secular growth trends


15 April 2024

Defaqto Roadshow - The challenges and opportunities of pursuing Income


11 April 2024

Liontrust: US small caps are overlooked and undervalued


4 April 2024

Q1 2024 Rebalance – we think the backdrop is good for stocks


21 March 2024

25 years of ISAs: a quarter of a century of tax-efficient savings and investing


4 March 2024

Stepping out of cash needn’t be daunting


26 February 2024

Managing lifetime wealth – trends in the UK retirement advice industry


23 February 2024

Empowering advice for women in finance


14 February 2024

Tech Matters is here!


5 February 2024

Defaqto upcoming event – Engage webinar 22nd February


1 February 2024

The gender divide in retirement confidence


30 January 2024

SDGs in focus: climate and nature


26 January 2024

Tax year end prep. We’re here to help.