Business Leaders Cyber Briefing
A short summary of the latest cyber security news and trends, from the perspective of business leaders and owners. Hosts Trish and Tom provide plain English explanations along with practical advice to keep your business safe and secure from cyber crime and disruption.
For cyber security help and advice, speak to Cool Waters Cyber: www.cool-waters.co.uk
Business Leaders Cyber Briefing
Dramatic changes in UK Supply Chain Security
This episode dives deep into UK Supply Chain Cyber Security, a critical and often overlooked area in today's digital world.
So, what exactly is it? It's about securing the entire network of external partners, suppliers, and third-party services that your business relies on. Imagine your company as only as strong as its weakest link. In the UK, this is more urgent than ever: supply chain cyberattacks surged by a staggering 431% between 2021 and 2023. Despite this growing threat, shockingly few UK businesses formally review risks from their immediate suppliers (only 14%) or their wider supply chain (just 7%). The financial impact is immense, costing the UK economy an estimated £27 billion annually.
Our understanding of supply chain cyber security has evolved significantly beyond mere data protection. While preventing data breaches remains vital, the new reality focuses on operational resilience. This means ensuring your suppliers remain functional and can continue delivering critical services, even if they suffer a cyberattack themselves. Recent high-profile incidents, like the 2024 Synnovis ransomware attack which disrupted NHS services, starkly illustrate how a supplier's compromise can halt critical operations, affecting everything from pension payments to patient care. The goal is no longer just to avoid losing data, but to guarantee your ability to operate smoothly.
The easiest and most effective way for firms to manage this complex supply chain security is by asking for certifications from their suppliers. Cyber Essentials has emerged as the cornerstone of the UK's strategy, a government-backed scheme defining five fundamental technical controls that protect against the majority of common cyberattacks. It's not just a recommendation; it's rapidly becoming a critical business requirement, with major UK banks like Barclays and Lloyds Banking Group now expanding Cyber Essentials requirements across their supply chains. This streamlines due diligence, raises minimum standards across the economy, and has been proven to work: one firm, St. James's Place, saw an 80% reduction in cyber incidents after requiring 2,800 suppliers to achieve Cyber Essentials Plus.
Need help with Cyber Security?
Speak to Cool Waters Cyber - NCSC assured Cyber Advisors and Cyber Essentials experts - www.cool-waters.co.uk