Tag Archives: General Data Protection Regulation

Magenta Security Services achieves Cyber Essentials accreditation

Magenta Security Services has been recognised by the National Cyber Security Centre (NCSC) after taking significant steps towards protecting its online systems. The effort expended has seen the Hounslow-based Security Industry Authority Approved Contractor added to a list of endorsed organisations on the NCSC’s website and accredited with a Cyber Essentials certificate.

Cyber Essentials is a Government-backed, industry-approved scheme aimed at helping organisations protect themselves against common types of cyber attack. At its basic level, the scheme advocates businesses implementing certain technical controls in order to bolster overall system security.

To earn its Cyber Essentials certificate, Magenta Security was required to have all of the business’ digital defences assessed by an independent accreditation body.

AbbeyPetkarMagentaSecurityWeb

Abbey Petkar

Having self-implemented the technical controls already, its systems and software also met a detailed set of requirements with various forms of evidence provided to back this up.

Finally, a self-assessment questionnaire was completed as proof of understanding the new implementations and configuration of its systems.

Abbey Petkar, managing director of Magenta Security, explained to Risk Xtra: “Following many recent high-profile data breaches as well as the General Data Protection Regulation deadline, there has been a substantial increase in business awareness of the need to boost online defences. Magenta Security is protecting its clients in every possible way.”

Magenta Security also runs operations in Swindon, Birmingham, Manchester and Kent, providing security guarding solutions, mobile patrols and electronic surveillance.

Advertisements

Leave a comment

Filed under Risk Xtra, Uncategorized

95% of UK businesses “still struggling” with mobile working as security of data continues to cause concern

Apricorn – the manufacturer of software-free, 256-bit AES XTS hardware-encrypted USB drives – has unveiled new research results highlighting that 95% of organisations surveyed in the UK recognise problems with mobile and remote working. Worryingly, nearly one-in-five (18%) suggest that their mobile workers don’t care about security.

All (ie 100%) of those IT decision-makers surveyed noted that they had employees who work remotely at least some of the time, with an average of over one third (37%) of staff members who do so. With an increase in the numbers of people working remotely, this means more data moving beyond the confines of the corporate network. Organisations need to ensure that any data – be it at rest or on the move – remains secure.

While many are taking steps to ensure their data is protected, for instance by implementing security policies for mobile working and Bring Your Own Device, just under half of respondents (44%) still agree that their organisation expects their mobile workers to expose them to the risk of a breach. Roughly one third (32%) say that their organisation has already experienced a data loss or breach as a direct result of mobile working, while 30% of respondents from organisations where the General Data Protection Regulation (GDPR) applies are concerned that mobile working is an area that will most likely cause them to be non-compliant.

MobileWorkingSecurity

53% cited that one of their Top Three biggest problems with remote working is due to the complexity and management of the technology that employees need and use. Over half (54%) say that, while their organisation’s mobile workers are willing to comply with requests relating to security measures, employees lack the necessary skills or technologies required to keep data safe. Nearly one third (29%) take the radical approach of physically blocking all removable media, while a further 22% ask employees not to use removable media (although they have no technology means by which to enforce this).

“The number of organisations blocking removable media has increased compared with responses to the same question in 2017, when 18% said they were physically blocking all removable devices,” said Jon Fielding, managing director for the EMEA at Apricorn. “A unilateral ban isn’t the solution and ignores the problem altogether, while also presenting a barrier to effective working. Instead, businesses should identify corporately approved, hardware-encrypted devices that are only provided to staff with a justified business case for having such. The approved devices should then be white-listed on the IT infrastructure, blocking access to all non-approved media.”

Risk of data breaches

Despite strict security policies, mobile working can still leave organisations wide open to the risk of a data breach. Half (50%) of respondents admitted one of the three biggest problems with mobile working is that they cannot be certain their data is adequately secured. Only around half enforce and are completely confident in their encrypted data in transit (52%), in the cloud (52%) and at rest (51%).

“While the new GDPR legislation requires the ‘Pseudonymisation’ and encryption of personal data, encryption isn’t a new concept, and keeping data secure has always been imperative to any organisation handling sensitive information,” added Fielding.

In conclusion, Fielding stated: “Organisations are simply not following security Best Practice. They need to implement and enforce policies and provide employee training to ensure compliance with the GDPR. Failing to put processes in place is putting confidential data at risk. Organisations now face the prospect of being fined even before a breach has occurred.”

Leave a comment

Filed under Risk Xtra

CDVI UK receives Cyber Essentials accreditation

CDVI UK has announced the company’s successful accreditation to the Cyber Essentials security standards. Cyber Essentials is a Government-backed and industry-supported scheme designed to help organisations protect themselves against common online threats. This set of basic technical controls assists organisations in protecting themselves against common online security threats.

This certification is consistent with the continual desire of CDVI UK to offer secured solutions and products.

CDVI UK has been working with Luke Hargreaves, managing director at Cloud Smart Solutions, to secure the company’s IT network against cyber attacks. The business now has up-to-date and operative cyber security measures in place.

CyberEssentialsLogo

The latest update of the ATRIUM web-based access control to General Data Protection Regulation standards shows that CDVI’s product development is fully connected to the latest trends in the security industry.

The CDVI Group develops products ranging from biometric and online access control solutions through to electromagnetic locking, keypads, stand-alone entrance systems and door automation.

Leave a comment

Filed under Risk Xtra

Norbain set to launch “industry-first” Virtual Event on Tuesday 5 June

Norbain will be launching its first Virtual Event on Tuesday 5 June. The online event has been developed such that ‘visitors’ can benefit from all the advantages of a physical exhibition, but at a time and place convenient to them.

As is the case with a physical event, visitors will be able to keep up-to-date with the latest developments in the industry, speak with suppliers, network, watch videos and presentations and use their ‘event bag’ to take away useful resources.

In addition to being able to visit supplier’s stands, the Virtual Event will give visitors the opportunity to watch a range of presentations from industry experts focusing on the subjects of cyber security and the EU’s General Data Protection Regulation.

NorbainVirtualEvent

Mark Field, commercial director for Norbain SD, commented: “We’re continually looking for new and innovative ways in which to deliver value to the industry and facilitate the sharing of information between all parties. Although physical exhibitions and roadshows are still relevant, it’s becoming increasingly challenging to justify the time and expense involved for visitors and suppliers alike. Face-to-face networking will always be a part of our strategy, but the Virtual Event allows us to offer a very accessible alternative.”

The launch event is “just the beginning”. Norbain will be using the site across the year to run a range of events on a number of different themes, all of them focused on topics that are key to the industry. Even when the platform is not being used to run live events, it will still be available to visitors, subsequently allowing them to take advantage of a great range of resources (among them the dedicated Cyber Security Zone).

*Register for the Norbain Virtual Event by clicking here

Leave a comment

Filed under Risk Xtra, Uncategorized

dormakaba issues brochure and video on cyber security and data protection

Security and access solutions specialist dormakaba has launched its latest brochure promoting products that protect the physical security of Data Centres, server rooms and server racks. Created with building services professionals in mind, the brochure includes products suitable for high security applications where the protection of data is paramount. Accompanying the brochure, dormakaba has also created a video to highlight the importance of physical access for secure Data Centres. 

The physical security of data plays a key role in ensuring that information is kept secure and safe from misuse. Whether private to an organisation or an individual, organisations have a responsibility to ensure that all data is kept secure throughout its lifecycle (ie from the time it’s created right through to the time that it’s used and, finally, through to the time it’s archived).

The first section of the brochure introduces the main challenges faced when securing data, including where sensitive data resides and how it’s stored. With site access restricted to a select group of individuals, Data Centres and server rooms are environments that require secure and compliant access solutions.

dormakabaCyberBrochure

The brochure also includes product categories that recommend fit for purpose solutions depending on the desired application. These range from cylinder and key systems to electronic access control and safe locks.

“With the European Union’s General Data Protection Regulation due to come into force on Friday 25 May, organisations now have a heightened awareness of their responsibilities when it comes to protecting personal data,” said Clive Baker, director of security locking at dormakaba. “While many have brought in new policies to guarantee the protection of information, the physical aspect of data security is often overlooked. This brochure has been created to educate those responsible for ensuring compliance with ever more stringent legislation.”

*To view the video accompanying the brochure visit: https://www.youtube.com/watch?v=2_G_OXK-dSw&t=1s

**Free copies of dormakaba’s new brochure may be downloaded at: www.dormakaba.co.uk or contact marketing.gb@dormakaba.com

Leave a comment

Filed under Risk Xtra

EU’s GDPR and cyber security to be ‘hot topics’ at Hikvision Insight

Following on from the success of Hikvision Insight in October last year, Hikvision UK and Ireland is now pleased to announce a second series of events taking place in five cities across the UK and Ireland in March wherein presentations on both the European Union’s upcoming General Data Protection Regulation (GDPR) and cyber security will take centre stage.

Alongside the seminar programme, Hikvision will be showcasing its own security solutions including the latest in thermal solutions, Deep Learning technology, 180° and 360° technologies and Hikvision’s new video control software named HikCentral.

HikvisionInsight1

“We take great pride in developing innovative solutions suitable for multiple applications,” said Gary Harmer, sales director for Hikvision UK and Ireland. “We’re looking forward to taking these solutions around the country such that professional security installers and system integrators can be get hands-on with our latest technologies. Hikvision Insight also allows us to update the market on our plans prior to the introduction of the GDPR later this year and outline the continuous developments we’re making in terms of the cyber security of our products.”

At these events, Hikvision will be joined by its authorised distribution partners and technology partners GJD, Pyronix and Seagate. GJD, the manufacturer and designer of smart electronic perimeter detection and high performance LED illumination equipment, is set to showcase its complete range of IP security solutions at the Hikvision Insight 2018 events, in turn demonstrating their use in real world scenarios.

HikvisionInsight2

Mark Tibbenham, GJD’s managing director, commented: “We’re really proud to join Hikvision’s group of partners. The GJD and Hikvision integration delivers world-class IP solutions suitable for a wide range of sectors. We’re looking forward to exhibiting at the Hikvision Insight events and highlighting to visitors the advantages of connecting our technology with Hikvision.”

GJDIPDetectorHikvisionInsight

Andy Keeley, head of marketing at Hikvision, added: “We’re looking forward to GJD joining us at our Hikvision Insight events. We’re excited to see the seamless integration between Hikvision and GJD’s technologies bringing a total security solution.”

*To find your nearest Hikvision Insight event and to register for your place visit www.hikvision.co.uk/insight

Leave a comment

Filed under Risk UK News

GDPR Readiness Checklist Tool launched by NW Security Group to help businesses comply with upcoming EU legislation

NW Security Group, the provider of IP video solutions and security consultancy, has launched a free European Union (EU) General Data Protection Regulation (GDPR) Readiness Checklist Tool to help businesses quickly and easily determine if they’re adequately preparing for the new legislation. Due to come into effect on 25 May, the EU GDPR aims to ensure the protection of personally identifiable information. According to recent figures, over 50% of companies across the UK will not be ready for the GDPR by the stated deadline.

While awareness of the new legislation has risen in recent months, the consensus is that UK firms are under-prepared for the EU GDPR, and therefore at risk of fines as high as €20 million or 4% of a company’s annual turnover (whichever is greater).

As an expert in providing security consultancy and training, NW Security has been giving businesses across the UK guidance on how to ensure compliance by the May deadline in a series of awareness seminars. The GDPR Readiness Checklist Tool has formed a vital part of each seminar, helping attendees determine how effective their data protection processes are on their respective journeys towards GDPR compliance.

NigelPeersGDPRChecklistTool

Nigel Peers, senior consultant at NW Security, offers his thoughts on the EU’s General Data Protection Regulation and how companies must prepare for its introduction

“As a provider of IP-based security systems, we’ve always taken cyber security very seriously indeed to ensure the solutions we recommend to our customers protect the data that’s generated,” stated Nigel Peers, senior consultant at NW Security. “In recent months, we’ve been raising awareness with companies and helping them to assess their levels of preparedness for the GDPR using our quick Checklist Tool. As the timeframes become more urgent and levels of readiness are left wanting, we felt it would be helpful to make this free Checklist Tool available to more companies across the UK. It prompts them to think about how best to prepare themselves and their supply chains for the GDPR and provides an insight of just how comprehensive a full GDPR Organisational Readiness Assessment needs to be.”

One of the seminars was held at the Wirral Chamber of Commerce in Birkenhead, welcoming attendees from a range of businesses in the region to heighten understanding of the new GDPR and identify how it could impact their organisation. Laura Cross, director at Concentric HR, said of the seminar: “It was extremely informative and practical. We don’t feel fully prepared for the GDPR as yet, but events such as this have definitely increased our knowledge on the topic and given us great learnings to take back and implement within our firm.”

Cross continued: “The GDPR Readiness Checklist Tool was one of the most useful aspects of the seminar. It really helped me to understand where our business is currently on the journey towards GDPR compliance. Knowing that there are external experts out there that can support us along the way is extremely reassuring for our business.”

*To use the free EU GDPR Readiness Checklist Tooll visit: www.nwsecuritygroup.com/gdpr-readiness-quick-checklist

Leave a comment

Filed under Risk UK News