Is there standard Encryption on all work devices?
Do you update all systems including firewalls and anti virus software at least every 30 days?
Are full system backups taken at least weekly and stored either off site or disconnected from your network?
Do you regularly provide cyber security awareness training, including anti-phishing awareness, to all users who have access to your organisation’s network or confidential information / personally identifiable information?
Do you scan incoming emails for malicious attachments and/or links?
Do you obtain verbal authentication when setting up or amending payee details and for funds transfers in excess of £5,000?
Confirm you do not have any End of Life (EoL) software, unpatched software or Operating System (OS) exposed to the internet:
Confirm you are not involved directly in the use or supply of cryptocurrency: