Security advice

Share

Share this page with the external widget:

Information security

Almost every business relies on the confidentiality, integrity and availability of its data. Protecting information, whether it is held electronically or by other means, should be at the heart of the organisation’s security planning. The key questions to keep under constant review are:

  • Who would want access to our information and how could they acquire it?
  • How could they benefit from its use?
  • Can they sell it, amend it or even prevent staff or customers from accessing it?
  • How damaging would the loss of data be? What would be the effect on its operations?

CPNI provides a range of guidance documents and technical notes aimed at improving practices and raising awareness of current issues related to information security. The following sections set out this information in more detail.

Critical controls for cyber defence

The Top Twenty Critical Security Controls are a baseline of high-priority information security measures and controls that can be applied across an organisation in order to improve its cyber defence. The controls (and sub-controls) focus on various technical measures and activities, with the primary goal of helping organisations prioritise their efforts to defend against the current most common and damaging computer and network attacks.

Critical controls for cyber defence

Protecting business systems

The section provides advice on how you can help protect various business information systems from electronic attack.

Protecting business systems

Understanding electronic attack

As businesses look towards technologies that can offer more sophisticated features and services to improve business delivery so they will open up increased opportunities to exploit their networks and systems.

Understanding electronic attack

Share

Share this page with the external widget: