Organisations continue to be at risk from cybersecurity incidents – with each incident potentially costing millions of dollars.
This risk – and cost – is only likely to increase as the social engineering and technical elements of cyber-attacks become more sophisticated. To help organisations respond effectively to these threats, the Australian Cyber Security Centre and the Australian Signals Directorate have developed the "Essential 8" baseline mitigation strategies. According to the ACSC, these strategies can be customised according to each organisation’s risk profile and the cyber threats they are most concerned about.
The "Essential 8" incorporates four mitigation strategies to prevent the delivery and execution of malware. We’ve summarised these here:
The "Essential 8" also features three strategies to limit the extent of cyber security incidents. These are summarised below:
Finally, the "Essential 8" incorporates – as a mitigation strategy to recover data and system availability – backing up important new or changed data, software and configuration settings daily and keeping the backups for three months. This will help an organisation recover from a cyber security incident.
Your organisation should strongly consider applying the "Essential 8" as the foundation of a mature, robust cybersecurity strategy. If you would like to learn more, please contact us at firstname.lastname@example.org.
By Roger Carvosso, Product and Innovation Director