The continual development of Cyber and Information Security risks has reached a critical level, and it is imperative that organisations in Guernsey sit up and take notice. Having declared it a high risk area, the GFSC has recently published guidance for Boards, which you can find here, and has indicated that all financial services firms and prescribed businesses must have a structured approach to managing these risks. Moreover, the GFSC has decided that Cyber and Information Security risks will be the subject of the latest thematic review.
So, as a simple test of your organisation’s level of risk maturity, can your Board or SMT answer the following questions with confidence? If not, it may be worth getting in touch.
How do we defend our organisation against phishing attacks?
How does our organisation control the use of privileged IT accounts?
How do we ensure that our software and devices are up to date?
How do we make sure our partners and suppliers protect the information we share with them?
What authentication methods are used to control access to systems and data?
At East Harbour we’re experts at helping organisations to protect what’s important. Our qualified consultants count CISSP, the world’s premier cybersecurity certification, amongst their qualifications, ensuring that we’re able to provide you with the best, most up to date information available to help you manage cyber security risk. In addition we are entirely independent, enabling us to assess and validate the security practices of the technology or hosting providers that are critical to your business.
We are available to come into your organisation and provide high level or detailed coaching and training to Boards, Senior Leadership Teams or operational staff as required, to ensure that you are up to date with the GFSC’s expectations, and to ensure you continue to protect your business. Please contact us for further information.