The Scottish Business Resilience Centre has won a tender for an undisclosed sum from the Scottish Government to launch and deliver the National Cyber Security Centre’s Exercise in a Box to businesses in Scotland.
More than 250 organisations – from those in the Highlands and Islands all the way to the Borders – will be able to discover how resilient they are to cyber attacks and test their response in a safe environment, without worry about repercussion to their business.
The Exercise in a Box toolkit, created by the National Cyber Security Centre, provides a set of training tools to allow organisations to test their preparedness to the most common cyber attacks, and record and learn lessons from the exercising sessions.
The nine-month programme will be run by the SBRC’s cyber team with input from Police Scotland and other stakeholders. Organisations will be able to participate in the programme through a blended model of tabletop meetings and online sessions. Participants will gain a range of skills allowing them to continue refining their cyber resilience policies in their own time.
It is estimated that 65,000 cyber security attacks occur daily, and of these around 4,500 are successful.With further data suggesting that cyberattacks are on the rise since the Covid-19 pandemic hit, organisations need to be ready and able to deal with such an attack on their own organisation – and know who to call on for support should such an event happen.
Consulting giant McKinsey stated in its recent Covid-19 crisis shifts cybersecurity priorities and budgets report, that Chief Information Security Officers (CISOs) “have been monitoring spiking threat levels, including a near-sevenfold increase in spear-phishing attacks, since the pandemic began. Remote workers are also being bombarded with attacks based on Covid-19 crisis themes that are taking advantage of delayed updates to email and web filters, and using social engineering to prey on workforce concerns.”
Aimed at small and medium-sized businesses, charities, local government and the emergency services, Exercise in a Box clearly outlines the key considerations an organisation should address when preparing a response to a cyberattack. This includes setting up, planning, delivery, and post-exercise activity, and the resource is available for free from the NCSC website.
Jude McCorry, CEO of SBRC, said: “The stress that businesses are currently under has placed an incredible strain on their overall resilience. Hackers are very opportunistic and have not missed an opportunity to prey on those working remotely. Businesses therefore cannot afford to skip a beat; Exercise in a Box will allow them to review their existing cyber resilience policies – and for many will help to shape these – to ensure they are ready to handle and respond to an attack on their organisation. The countrywide roll out of this programme will be integral in helping us to ensure Scotland is one of the safest and resilient places to live, work and do business both on and offline.”
Deputy First Minister John Swinney said: “Despite constant improvements in technology, cybercrime rates show no signs of slowing. Criminals have no qualms in exploiting vulnerable people or situations and it is really important to prepare for the most common cyber attacks. The NCSC Exercise in a Box toolkit will help organisations in the public, private and third sectors ensure they are as resilient as possible.”
Sarah Lyons, NCSC Deputy Director for Economy and Society Engagement, said: “It’s great that the SBRC will be delivering our free Exercise in a Box toolkit to many more organisations across Scotland. For any organisation, practising their response to a cyber attack is key to reducing the chances of falling victim, and Exercise in a Box allows them to do that in a fun and informative way. We know the toolkit is having a real impact on improving the preparedness of organisations for a cyber attack, and I would strongly urge those in Scotland to take up this opportunity from the SBRC.”
Related posts
Interviews
Comment
Please mind the gap… or healthcare may fall
Imagine sharing a lengthy train journey with others. From beginning to end, imagine how often you might hear ‘mind the gap’ messages about embarking and disembarking safely. Picture how navigating…
Women Lead: My journey from Dragons’ Den to Silicon Valley
Following her appearance on Dragons’ Den, Sheila Hogan, serial entrepreneur, founder and chief executive of digital legacy vault, Biscuit Tin, shares her experience of her time in the Den and…
Look anywhere – the future is ‘aged tech’. But Scotland needs to be more adventurous
Scottish Care, as the representative body of independent social care providers of care home, care at home and housing support services, has been working over several years with colleagues in…
Women Lead: Engineer turned entrepreneur
We are always fascinated by other people’s stories. It’s how we connect, grow and learn from each other. Until very recently I always felt like I didn’t have a story to tell. Who…
‘Women – together we will change the dynamic in tech’
I was inspired to start a career in technology when personal computers were in their infancy and the internet decades away. My childhood dream of becoming a scientist was shaped by…
It’s time to change the future of tech apprenticeships – and we need your help
In his latest exclusive column for Futurescot, Ross Tuffee, chair of the Skills Development Scotland (SDS) Digital Economy Skills Group, calls on tech employers to get involved in shaping the…
What AI difference a year makes
Amazingly, it’s been one year since the publication of Scotland’s AI Strategy. And what a year it has been. Demanding but rewarding, with good progress made and great foundations laid…
International Women’s Day: It’s time to harness power of women in technology
As we celebrate International Women’s Day, I hope to be part of a future where barriers that prevent women from competing on a level playing field in the work environment…