Clear and concise explanations are given for the most common IT security expressions, phrases, acronyms and jargon.
Find out whether you should consider encrypting your data, how encryption works in practice and what types of appropriate technical and organisational measures are common.
This example password/pass phrase policy could be used by an organisation to help protect client and employee data. It is jointly published by ICAEW's Business Law and Tech Faculty.
This is the fifth in the series of Audit insights: cyber security reports. It focuses on the substantial gap in cyber security maturity levels caused by complex legacy IT environments and how business needs to adopt a smarter approach to cyber security laws and standards.
While the fundamentals on how to protect yourself, your business and your clients remain essentially unchanged, the context in which we write about them continues to shift. Cyber criminals are always finding new means of attack and we all need to keep up to keep them out.
Features and articles
Good cybersecurity succeeds and fails on people, so it's essential for chartered accountants to create and foster a strong security-aware culture in their organisations.
Cyber breaches can be caused by many things, but one risk factor that is causing increasing concern is supply chains, especially as only 12% of businesses have reviewed cybersecurity risks posed by their suppliers.
The first step to protecting an organisation from a cyber attack is to realise that it will happen, you just don’t know when. Cyber risk is real and everyone in a business shares responsibility. Karen Morrall explains why finance teams need to start thinking differently about cybersecurity.
Every senior manager and leader needs to understand cybersecurity, writes Councillor Peter Fleming, Chairman, Improvement and Innovation Board at the Local Government Association.
Technical helpsheet issued to help ICAEW practice members to navigate some of the issues that may arise if they find that they have been victims of fraud.
New helpsheet for charities on keeping themselves safe in the pandemic and beyond, issued in December 2020 by the Fraud Advisory Panel, the Charity Commission, the National Cyber Security Centre and others.
Covid-19 is creating exceptional circumstances and while the country adjusts to life under lockdown, criminals are identifying ways to exploit the vulnerable at this time of uncertainty.
Complete the FDW eLearning course
ICAEW is collaborating with Deloitte to ensure its members and students have the knowledge and skills to take advantage of the opportunities offered by the fourth industrial revolution and to meet its challenges head on. Log-in to access exclusive eLearning content.
Webinars and recordings
Webinar document from the NCSC
While many people are keen to return to the office after a year of home working, most employees want the option to work part of the week remotely.
In this on-demand webinar we'll explore some of the latest thinking and practical productivity hacks, leaving you with the capacity to turn your new self-awareness into focused action.
A timely update on common online frauds you might encounter in your professional and personal lives, along with some practical tips on how to spot and avoid them.
Disclaimer: The opinions expressed by external guest speakers in interviews or other publications included on this website are, by their nature, those of the speaker. They are not necessarily fully endorsed by the ICAEW or purport to reflect the official policies and views of the ICAEW or its members.
The Library & Information Service provides a hand-picked collection of industry press articles as a benefit of membership. If you are unable to access an article, please see our Help and support or contact firstname.lastname@example.org
Article discusses internal IT security threats and how these shouldn't be left to the IT department and should b addressed by an organisation's internal controls.
Article reports that the healthcare organizations have come under intense pressure since the outbreak of the Covid-19 coronavirus, and they are also battling a dramatic increase in cyber security incidents linked to the pandemic.
Article looks at the takedown of Emotet - one of the world's most active and dangerous cyber threats using malware and ransomware. Also discussed is how this may not have a long-term impact.
The article discusses that the Domain name system (DNS) security is often overlooked by organizations, but focusing on this layer could improve the effectiveness of cyber security strategies.
Guidance on how organisations can protect themselves in cyberspace, including the 10 steps to cyber security, an introduction to cyber security for executive/board-level staff and an explaination of what a common cyber attack looks like, and how attackers execute them.
Guidance from the Information Commissioner's Office (ICO) which gives advice for small businesses on how to keep IT systems safe and secure.
Government campaign to raise cyber security awareness. Gives advice on: protecting your device; protecting your data; and protecting your business.
Guidance from ENISA on the security risks and opportunities of cloud services for SMEs. Includes forms for assessing risks and opportunities and collecting relevant information about the security aspects of a cloud service.
ICAEW accepts no responsibility for the content on any site to which a hypertext link from this site exists. The links are provided ‘as is’ with no warranty, express or implied, for the information provided within them. Please see the full copyright and disclaimer notice.
Data protection and privacy
24 February 2021: The UK government has welcomed the European Commission’s recent draft data adequacy decision, which paves the way for the continued free flow of data from the EU and the UK.
The EU Commission has issued a draft decision that the UK will be granted a full adequacy decision which will enable data flows from the EU/EEA to continue as they did when the UK was in the EU. However the European Data Protection Board still has to formalise this and will not do this before it has consulted with member states.
Following the UK’s departure from the European Union, ICAEW Insights has the latest on how this affects GDPR and the sensitive issue of data protection.
October 2020 update on data protection and Brexit – what you need to know and how to prepare your business.