All too often I hear the following from business owners, “My Cyber Security is OK, our provider takes care of it for us”. That may be true, but there are several things that come to mind for me, as an independent security professional.
How do you know?
Have you checked?
Have you asked the right questions?
It’s perfectly acceptable and makes sound business sense to outsource your I.T. to a third party. But please, don’t confuse hosting with security. You wouldn’t let someone you don’t know take care of your prized possessions, your children or anything else dear to you. So why do it with your data?
Check the following:
Are they responsible for your security updates, or are you?
Are they monitoring your network for unusual activity?
Are they providing malware and anti-virus on your systems?
Are they running back ups on your data?
Do they have accreditations such as ISO27001 and/or Cyber Essentials.
Your responsibilities as a business owner for protecting customer data cannot be outsourced. Unless you conduct your own due diligence, you run the risk of getting into difficulty.
We can help with a comprehensive Cyber Risk Assessment, for more details head to https://intelect.app/
Leave a Reply