So, what are the main security threats affecting SMEs and what defences could be put in place to eliminate or minimise these threats?
First we need to ask if there is a problem regarding security against SMEs and if so how large is this problem?
Looking at the BIS ISBS 2015 we can clearly see a worrying increase in breaches when compared to the slight decrease that was reported in the surveys report of 2014. 74% of small businesses reported a breach in 2015 up from 60% a year ago. (BIS, 2015)
Of these breaches reported the average cost of a small business breach is also up from last year from £65,000 - £115,000 to £75,000 - £311,000. So not only is the frequency of breaches up, so is the average financial impact.
So we’re aware that there is …show more content…
AJAX, SQL / Data Query
• The ability to use forensic tools (EnCase, AccessData Forensic Toolkit etc.) AccessData being software you can achieve a qualification for whilst studying at university
• The deep understanding of all layers of the OSI model
• Deep understanding of networking and protocol theory
• Routing and Switching (Cisco & Juniper)
This list is not exhaustive by any means however, you would expect and want someone with knowledge in all areas of security and for them to be an expert in a few, you would ideally want a team that collectively covers all areas of computer security or, a team of penetration testers that have a large range of expertise.
Charlie would also need to develop certain soft skills to work well with his team some of which being;
• Problem Solving
• Critical Thinking
• Organization
• Presentation Skills – Need to report back to the client what you have discovered
• Listening – Whether to a colleague or a client
• Strategic Planning – Need to plan as if you are detected mid penetration with no plan, window of opportunity may close
• Adaptability – Need to adapt of countermeasures in place when penetrating a
First we need to ask if there is a problem regarding security against SMEs and if so how large is this problem?
Looking at the BIS ISBS 2015 we can clearly see a worrying increase in breaches when compared to the slight decrease that was reported in the surveys report of 2014. 74% of small businesses reported a breach in 2015 up from 60% a year ago. (BIS, 2015)
Of these breaches reported the average cost of a small business breach is also up from last year from £65,000 - £115,000 to £75,000 - £311,000. So not only is the frequency of breaches up, so is the average financial impact.
So we’re aware that there is …show more content…
AJAX, SQL / Data Query
• The ability to use forensic tools (EnCase, AccessData Forensic Toolkit etc.) AccessData being software you can achieve a qualification for whilst studying at university
• The deep understanding of all layers of the OSI model
• Deep understanding of networking and protocol theory
• Routing and Switching (Cisco & Juniper)
This list is not exhaustive by any means however, you would expect and want someone with knowledge in all areas of security and for them to be an expert in a few, you would ideally want a team that collectively covers all areas of computer security or, a team of penetration testers that have a large range of expertise.
Charlie would also need to develop certain soft skills to work well with his team some of which being;
• Problem Solving
• Critical Thinking
• Organization
• Presentation Skills – Need to report back to the client what you have discovered
• Listening – Whether to a colleague or a client
• Strategic Planning – Need to plan as if you are detected mid penetration with no plan, window of opportunity may close
• Adaptability – Need to adapt of countermeasures in place when penetrating a