WHERE LOCAL BUSINESS GROWS

IT Security

You need to protect your information, as you would any other valuable business asset. Get tips on securing your IT systems and learn about potential consequences of cyber attacks.


IT security – why bother?
 

The Data Protection Act says that appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data. Breaches of data protection legislation could lead to your business incurring a fine,  up to £500,000 in serious cases.

The reputation of your business could also be damaged if inadequate security contributes to high profile incidents of data loss or theft. However, there are measures that you can put in place to prevent security breaches or limit the damage if they do occur.

Assess the risks to your business
 

Before you can establish what level of security is right for your business you will need to review the personal data you hold and assess the risks to that data. You should consider all processes involved as you collect, store, use and dispose of personal data. Consider how valuable, sensitive or confidential the information is and what damage or distress could be caused to individuals if there was a security breach. With a clear view of the risks you can begin to choose the security measures that are appropriate for your needs. The next step is to begin putting them in place.​​

Some organisations do not have adequate levels of protection because they are not correctly using the security they already have, and are not always able to spot when there is a problem. You need to make sure that all your employees are aware of their roles and responsibilities and that they are clear about when action needs to be taken. You should also consider what actions you should put into place should you suffer a data breach.

Take the time to review what personal data you currently have and the means of protection you have in place. Make sure you are compliant with any industry guidance or legal requirements. Document the controls you have in place and identify where you need to make improvements. Once any improvements are in place, continue to monitor the controls and make adjustments where necessary.

Consider the risks for each type of personal data you hold and how you would manage a data breach. This way you can reduce the impact if the worst was to happen.

You should also have an acceptable-use policy and training materials for staff so that they know their data protection responsibilities.

Get a security expert to review your systems.This will highlight where your security vulnerabilities are and how best to address them.

Don’t forget about backups of your data. Backups should be made regularly, kept secure and properly deleted when no longer required.

Take a layered approach to security
 

There is no single product that will provide a 100% guarantee of security for your business. The key to effective security is to have a layered approach, combining a number of different tools and techniques. if one layer were to fail then others are in place to catch the threat.

Employee awareness and training

Employees at all levels need to be aware of what their roles and responsibilities are. Train your staff to recognise threats such as phishing emails and other malware.

Intrusion defence

You need to be able to stop breaches happening before they penetrate deep into your network, for example by using a well configured firewall.

Access controls

Restrict access to your system to users and sources you trust. Each user must have their own username and password. A brute force password attack is a common method of attack, perhaps even by casual users trying to access your Wi-Fi so you need to enforce strong passwords, limit the number of failed login attempts and enforce regular password changes. Passwords or other access should be cancelled immediately a staff member leaves the organisation or is absent for long periods.

Physical security

Equipment containing personal data could be stolen in a break-in. You should ensure that personal data on your systems is protected against these threats. Your servers should be in a separate room with added protection. Back-up devices should not be left unattended and should be locked away when not in use.

Segmentation

You can prevent or limit the severity of data breaches by separating and limiting access between your network components. For example, your web server should be separate from your main file server. This means that if your website was compromised the attacker would not have direct access to your central data store.

Policies

A policy will enable you to make sure you address the risks in a consistent manner. Well written policies should integrate well with business processes.

Device Maintenance

Remove unused software and services from your devices. Older versions of some widespread software have well documented security vulnerabilities. If you don’t use it, then it is much easier to remove it than try to keep it up-to-date. Make sure you have changed any default passwords used by software or hardware, these are well known by attackers.

Internet banking

Always access internet banking by typing the bank's address into your web browser.

Never visit a website from an email link to enter personal details.

If in doubt:

Contact the bank seperately on an advertised number
Check your bank's website for safety tips
Check your bank statement thoroughly
Look for a locked padlock or unbroken key symbol in the bottom right of your browser window before accessing the bank site - the beginning of the bank's internet address will change from 'http' to 'https' when a secure connection is made
Don't leave your computer unattended when logged in to internet banking
Wipe your hard drive before you dispose of an old computer
Always have a disaster recovery plan in place and updated

Secure your IT on the move
 

You need to ensure that the same level of security is applied to personal data on devices being used away from the office. Many data breaches arise from the theft or loss of a device (eg. laptop, mobile phone or USB drive) but you should also consider the security surrounding data you might send by email or post. You can take steps to reduce the effects of the theft by ensuring that personal data is either not on the device in the first place or that it has been appropriately secured so that it cannot be accessed.

Encryption is a means of ensuring that data can only be accessed by authorised users. Typically, a password is required to ‘unlock’ the data. Full disk encryption means that the all data on the computer is encrypted. File encryption means that individual files can be encrypted.

Your encryption password should be a mix of upper and lowercase, numbers and special characters (i.e. #, &, !) and be kept a secret. Some software offers password protection to stop people making changes to the data but this may not stop a thief reading the data.

Make sure you know exactly what protection you are applying to your data. Some mobile devices support a remote disable or wipe facility. This allows you to send a signal to a lost or stolen device to locate it and, if necessary, securely delete all data. – Your devices will need to be pre-registered with a service like this.

Only transfer personal data to mobile devices if you actually need it and remove it when you have finished.

Stay on the alert
 

Computer equipment and software needs regular maintenance to keep it running smoothly and to fix any security vulnerabilities. Security software such as antivirus and anti-malware needs regular updates in order to continue to provide adequate protection.

Make sure any security software you have is switched-on and monitoring the files it should be. Keep your software up-to-date by checking regularly for updates and applying them. Most software can be set to update automatically. If your system is a few years old, you should review the protection you have in place to make sure that it is still adequate. You should also keep your knowledge of threats up-to-date by reading security bulletins or newsletters from organisations relevant to your business. You should also let your staff know about possible threats to your organisation. This could include alerting employees to the risks involved in posting information relating to your business activities on social networks or ensuring they know how to recognise phishing emails.

Cyber criminals or malware can attack your systems and go unnoticed for a long time. Many people only find out they have been attacked when it is too late even though the warning signs were there. Check your security software messages, access control logs and other reporting systems you have in place regularly. Make sure you can check what software or services are running on your network. Make sure you can identify if there is something there which should not be. Run regular vulnerability scans and penetration tests to scan your systems for known vulnerabilities – make sure you address any vulnerabilities identified.

Minimise your data
 

The Data Protection Act says that personal data should be accurate, up to date and kept for no longer than is necessary. Over time you may have collected large amounts of personal data. Some of this data may be out-of-date and inaccurate or no longer useful.

Decide if you still need the data. If you do, is it stored in the right place? – If you have data you need to keep for archive purposes but don’t need to access regularly, move it to a more secure location. This will help prevent unauthorised access. If you have data you really no longer need, you should delete it. This should be in line with your data retention and disposal policies. You might need specialist software or assistance to do this securely.

Cyber Security for Small Businesses
 

This guidance explains the threat from cyber attack and shows how you can protect your business. It includes advice on:

  • using strong passwords
  • updating software
  • providing simple staff awareness and training
  • managing risk
  • using the Cyber Essentials scheme to protect against common online threats

The advice will help you to protect your:

  • business information
  • cash flow
  • customers
  • reputation

Read More...

Advertisements
Did you know...
We create opportunities, we keep our members informed, connect businesses and we are the 'voice' of manufacturing representing Calderdale & Kirklees.

News

22 results found, page 1 of 3.  
Global Branding Agency Announces Launch of Accelerator Hub to Support Yorkshire Creative & Tech Start-Ups

Tuesday 03 April 2018

Elmwood, the world’s most effective brand design consultancy, is set to launch its first accelerator programme in June 2018. Elmwood LaunchPod is a unique project bringing creative and technology start-ups together into a thriving creative community, collaborating with them over a 12-week programme designed to take their businesses to the next level. Initial details about Elmwood LaunchPod, which will be hosted at Elmwood’s studio in Leeds (United Kingdom), have been released today, with the official launch of the accelerator programme taking applications from Monday 16th April until Friday 8th May. The inaugural accelerator programme is aimed at promoting the development of innovative consumer health start-ups, with Elmwood inviting both technology and creative (STEAM: science, technology, engineering, arts and mathematics) businesses who are innovating how people manage their health to improve their quality of life. As a global brand design consultancy, Elmwood is uniquely placed to o?er start-ups the guidance and support they need to ensure sustainable business growth beyond the 12-week programme. By bringing emerging technology and creative businesses into their community, they hope to discover how technological innovation can enhance brand experiences for both clients and consumers. Elmwood anticipates working with 5 start-ups when the 12-week accelerator programme commences, helping to support the next generation of entrepreneurs who are already hard at work to bring emerging ideas to market that will shape the future of consumer health. Throughout the 12-week programme, successful applicants will receive specialist insight from a world-class community of marketers and creative designers and free workspace at Elmwood’s creative and dynamic studio. Participating start-ups will also have access to expertise across Elmwood’s industry-leading global clients as mentors, as well as access to investors. Sarah Dear, managing partner at Elmwood and managing director of Elmwood LaunchPod, commented: “This is a unique project bringing together businesses with breakthrough ideas propelled by the power of design. “The future inevitably starts with an idea and some of the most innovative ideas are found among start-up businesses. Elmwood prides itself on being at the intersection of creativity and innovation and we’re looking forward to supporting the aspirations of health-focused entrepreneurs who are eager to develop the next generation of consumer health experiences into successful businesses that help improve people’s lives.”
Posted by KC Communications
New Apple IT repair centre opens in Huddersfield

Wednesday 28 March 2018

Check out our new Huddersfield service centre. Castlegate Huddersfield. This is who we are and this is what we do. HAD-IT Limited & HAD-IT (Huddersfield) Ltd incorporating HAD-COPY and HAD-PRINT Specialise in the Service and Support of Apple Products including Macs, iPads and iPhones etc. Our Apple Certified Engineers offer repairs from a simple Screen Replacement to Hard Drive Issues, Upgrades, Tuition and Training at very competitive prices. We also Supply and Support a full range of State of the Art Technology Colour and Mono Copier/Printers from simple Desktop to Large Format and Feature Rich Multifunction Machines with Full System Document Production all with a variety of Service, Maintenance and Support Contracts. In addition, our Printing Division offers a complete Graphic Design and High-Quality Printing Service to AO Size.
Posted by HAD-IT (Huddersfield) Ltd
Check out our New! Print Centre in Huddersfield

Wednesday 28 March 2018

Our Experienced Print Bureau Staff have a wealth of knowledge to make your Print and Graphics Project stand-out from the crowd.
Posted by HAD-IT (Huddersfield) Ltd
Your Local Apple IT Repair Specialists

Wednesday 28 March 2018

Hello, I’m one of the team at Had-It Limited. Our IT Technicians have a background with Apple Products, and have Apple training in their careers. We specialise in the repair of iPhones, through to Macbook and Apple desktops. So if you’ve had a slip and smashed your screen, we’re here to help. Prices vary on device and problem.
Posted by HAD-IT (Huddersfield) Ltd
Yorkshire cloud tech specialist secures £1m deal with Betfred

Wednesday 14 March 2018

Yorkshire based technology specialist Vapour Cloud – in association with pure technology group (PTG) – has secured a contract with renowned UK bookmaker Betfred, worth in excess of £1m. The betting firm has invested in Vapour’s omnichannel platform Höllr, as part of an extensive project to overhaul its call centre infrastructure. When fully deployed, the solution will encompass recordable voice, video, SMS, email and social media dialogue. A secure payment gateway – compliant to PCI DSS* Level 1 – will also ensure adherence to industry legislation. Elaborating on how the technology works, Vapour’s CEO Tim Mercer explains: “This really is a ‘next generation’ solution, particularly suitable for businesses with a B2C contact centre operation where security is a must. “The call recording facility will automatically stop, for example, when a customer inputs their card details. The DTMF (Dual Tone Multiple Frequencies) tones will also be masked so that the operator hears only a flat sound, then as soon as the three-digit CVC code is inputted, the recording will immediately re-start. This ensures the safe processing of extremely sensitive data.” With all communications set to be reportable, Betfred will now produce a host of call-related metrics that will drive performance improvements within the team. These statistics will include the number of calls missed and received, call sources, time and date stamps, and waiting durations. The flexibility of the platform will also allow Betfred employees to work from home, should they need to, for business continuity in the event of a disaster recovery scenario. The phased six-month roll out follows an extensive three-month ‘proof of concept’ project, with a VIP team of Betfred beta-testers. Once fully operational within the 150-strong call centre in Wigan, the platform will be implemented throughout the full network of 1,700 UK shops, one by one thereafter. Commenting on the project, Tim added: “Betfred has long prioritised the security of its customers details, but as cloud-based tech evolves so too do the opportunities to ensure even greater compliance. This is particularly important given the looming introduction of GDPR. The investment will also promote greater flexibility within the team, without any detriment to the customer experience. “This is a fantastic contract for us to win and it is a testament to the technological capabilities of our platform, particularly because many other industry solutions couldn’t fulfil the compliance brief. It’s also a strong example of how we work with channel partners to deliver complex solutions that may otherwise be unattainable. The client benefits from a safe pair of hands and the partner expands their revenue potential.” PTG’s sales director Gary Saunders elaborated: “This project is the result of a superb partnership between Betfred, pure technology group and Vapour, which has long focussed on the delivery of significant benefits for Betfred and its customers. It brings together expertise in multiple disciplines to totally transform the organisation’s approach to communications.” Betfred’s Head of Customer Services Mark Hilton concluded: “We are delighted to secure a deal with Vapour Cloud, which will greatly improve the customer experience and make us even more efficient.” Betfred receives an average of 50,000 incoming calls per month. *Payment Card Industry Data Security Standard
Posted by Scriba PR Limited
Harrogate to Host Digital Knowledge Conference

Tuesday 06 March 2018

Harrogate Convention Centre is set to host the “Go Digital – Live” conference on the 23rd March. The conference, which is organised by the Digital Knowledge Exchange, part of the Digital Enterprise programme in partnership with BQ Live and Stray FM, is open to all SME’s in the Leeds City Region who are looking to boost the digital knowledge enabling them to upskill and grow their businesses through advances in technology The one-day conference which opens with a keynote speech from Deputy Leader of Harrogate Borough Council, Cllr. Graham Swift will also provide delegates with access to a range of industry experts including Becky Boyd from the Google Digital Garage who will be giving insight on digital advertising, Leeds Beckett University will be discussing the rise of chatbots and how to implement them into your business successfully, while Pascal Fintoni of Arclight marketing and Media will be offering advice on how to launch your own live video show. In advance of the implementation of the General Data Protection Regulation, the Yorkshire & Humber Regional Cyber Crime Unit will also be advising on advances in cybercrime and how to mitigate the impact cybercrime has on companies and their customers. With up to 150 delegates anticipated to attend the conference, they will have the opportunity to register in advance to “Meet a Mentor” providing the ability to obtain on the day one to one support. To end the conference, there will be a Q & A Panel Session hosted by leading digital and tech specialists. A range of exhibitors will also make up the conference, providing delegates with the ability to discover some of the region’s most successful digital technology-related businesses.   To register for the event, visit https://www.godigitallive.co.uk/
Posted by KC Communications
Vapour Cloud invests in in-house service desk

Thursday 22 February 2018

Elland headquartered Vapour Cloud has invested in a new service desk to support the technology firm’s ever-increasing client base. The GDPR-compliant facility – which has been designed in line with ITIL* best practice – has been launched this month following a five-figure investment, six months of planning and a further two months of intensive beta testing. Having previously used a variety of external support systems, Vapour wanted to further boost the robustness and consistency of the team’s technical service infrastructure. The service desk has therefore been built on the world-leading Remedy platform, and trialled internally with a phased soft launch before its official roll out. Commenting on the new service desk provision, Vapour’s co-founder and cloud services director Steve Dempsey said: “All incoming client support calls and emails now come into one central internal system and are picked up by a single dedicated team. We haven’t just invested heavily in our technical capabilities – we’ve reallocated internal resources and recruited more cloud and customer service experts too, in order to effectively staff the six-strong desk. “The result is a more streamlined, efficient and dependable approach to customer service, which ultimately relies on strong, clear lines of communication.” Client queries are now logged via a simple ticketing system and triaged according to their level of urgency and technical complexity. Straightforward fixes are handled by the front-line team whilst more complex matters are escalated to Vapour’s specialist engineers. “The world of cloud tech is dominated by the satisfaction of SLAs that offer businesses some degree of reassurance regarding the support they receive,” continued Steve. “But really, service level agreements should provide only a minimal baseline. In the ‘real world’, modern organisations demand greater responsiveness, so if we can address something quicker than an SLA dictates, we will.” The soft launch period saw the use of a single incoming telephone number for clients’ technical enquiries. The success of this beta phase has seen the complete roll out of the service desk infrastructure this month. *ITIL (Information Technology Infrastructure Library) defines the detailed value-adding practices for planning, implementing and measuring successful IT service management to meet the needs of modern businesses.
Posted by Scriba PR Limited
Kirklees’ Biggest Business Conference Returns

Tuesday 06 February 2018

Following on from the huge success of the 2017 Conference, the Mid Yorkshire Chamber is delighted to be hosting their 2018 Kirklees Business Conference (KBC) at John Smith’s Stadium, Huddersfield on Wednesday 21st March. The free, one-day conference has become an unmissable event in the local business calendar which is dedicated to helping businesses to connect, learn and grow. Attracting over 600 business people and 50 exhibitors, KBC includes a fantastic programme of engaging seminars, a discussion panel, surgery sessions and open networking throughout the day. This year the Mid Yorkshire Chamber is proud to announce an official partnership with Google bringing a Digital Garage to KBC as part of the seminar programme. Running alongside the four seminar sessions, more surgery sessions will also take place following their success last year. Held by local businesses located in the stadium boxes, the surgeries will provide the opportunity for companies to run their own seminars, workshops or one to ones. Rory Bourke, Events & Sponsorship Co-ordinator at the Chamber said: ”Kirklees Business Conference is definitely shaping up to be a day not to be missed. The conference is a fantastic opportunity to raise your profile, make new contacts and learn from other experienced professionals. There are many opportunities for local businesses to get involved through sponsorship, exhibiting or attending as a delegate.” Confirmed conference sponsors and partners include; AD:VENTURE, The John Smith’s Stadium, The Design Mechanics and Social Progress. Delegate tickets are free but registration is essential, significant interest is anticipated therefore early delegate booking via www.kirkleesbusinessconference.co.uk is advised to avoid disappointment. For further information about the conference follow @MYBizConfs and #KirkleesConf on twitter. To find out more about sponsoring or exhibiting at the event please email events@mycci.co.uk or call 01484 483679.
Posted by Mid Yorkshire Chamber of Commerce
Yorkshire businesses need to broaden backup thinking in 2018, says tech specialist Vapour Cloud

Tuesday 19 December 2017

Yorkshire organisations must adopt a more considered email backup strategy in 2018 if they’re to ensure GDPR compliance and business continuity – that’s the advice from Tim Mercer, CEO of tech firm Vapour Cloud. With a rapidly expanding national client-base – not to mention a wealth of UK channel partners – the Calderdale-headquartered Vapour team has been discussing the new data protection legislation for some time. But with the countdown gathering pace, and newfound business continuity pressures being placed on Yorkshire firms, greater attention must now be paid to the data contained within emails, stresses Tim. “With the imminent introduction of GDPR, organisations are thinking a lot more seriously about the capture, storage and processing of their data. But all too often, we’re hearing businesses talk solely about things from a security perspective,” he said. “Yes, email robustness from hacks and other breaches is an important consideration here, but we need to think deeper about the subject. If a member of staff moves on to pastures new, all too often the employer deletes the account to free up a license and ensure a ‘belt and braces’ approach to security. But with account deletion comes the loss of potentially crucial GDPR-related consent evidence, not to mention often business-critical information trails. This oversight, when it comes to email backup strategies, therefore needs remedying – and quickly.” The urgent call explains why one of the newest products to be added to Vapour’s suite is the Veeam backup solution for Office 365 users. Following a period of rigorous testing, the tool is already being used by Vapour’s 31-strong organisation and – with a number of 365 partners within Vapour’s client base – it has been integrated into their offering as standard. But it is the more independent end-user client that now needs to think about their email backup strategy, emphasises Tim. “Backups used to be complex, but advancements within the cloud tech market mean we’re now talking only £2.99 per user per month, for complete continuity and legislative peace of mind. The process is not only cost-effective but straightforward too – we simply spin up a server, interrogate the 365 licensing following a robust sign on procedure and take care of the backup within seconds. “The world of business comms is changing – that’s why companies need to broaden their backup thinking, in 2018.” Vapour provides an array of cloud tech solutions covering three product suites – network connectivity, voice communications and storage. The business was founded in 2013 by co-directors Tim, Jason Sharp and Steve Dempsey.
Posted by Scriba PR Limited
Around Town In the Huddersfield Live Hygge Tipi

Wednesday 15 November 2017

What better time to get together than Christmas? Around Town believe that connecting the business community of Huddersfield in its iconic locations and organisations is a brilliant way to share ideas, hear inspirational stories and have some FUN. Organised by Oli Smith, Michelle Crowther and Chris Buckley Around Town create memorable events every 3 months. 2018 plans are already underway; “as well as meeting at some amazing businesses we are walking Around Town in Spring - a fantastic way to get to know each other whilst experiencing some award winning locations and scenery in Huddersfield “ says Michelle And with Huddersfield Live December promises to be a memorable Around Town event. Hosted in the Hygge Tipi in St Georges Square, hear Sam Watt and Poppy Stahelin tell of the fabulous work the team at Huddersfield Live are doing and some of the stunning events planned for next year. Laura Drury sets the backdrop of how she formed the The Hygge Tipi and how it creates a convivial atmosphere for Huddersfield folk to mingle, drink mulled wine, and keep the winter night out in front of the log fire. All In the heart of Huddersfield. Tickets are limited and can be reserved FREE here. Chamber members old and new are very welcome. Around Town Events for 2018 confirmed. March 1st - Valli Opticians May 17th - Owen Scott Tailors May 25th - (Walk) Around Town - 15miles (approx) Breakfast Sarnies, The Kirklees Way, Finish in a Brewery!
Posted by The Alternative Board
22 results found, page 1 of 3.  

Events Posted

2 results found 
Image for
CodeUp Huddersfield - April
Tuesday 24 April 2018, 18:00 - 20:00
The Media Centre, 7 Northumberland Street, Huddersfield, HD1 1RL
Free Entry - 50 places
Image for
How To Get More Clients Using LinkedIn
Wednesday 25 April 2018, 16:30 - 18:00
Firth Street, Huddersfield, West Yorkshire, HD1 3BD
Free Entry - 18 places
2 results found 
Designed by Kirklees Council
Built and powered by Alcium Software
Close cookie policy popup window
This site uses cookies for analysis purposes only. This helps us understand how you and other visitors use our site. To see a complete list of these cookies or to opt out please access our cookie policy page.

You will see this message only once, but you will be able to find more information about our use of cookies or opt out at any time.