Cyber Security in the UK: What’s Next?

The more organisations and individuals rely on an increasingly digital infrastructure, the greater the need for innovative cyber security. This is especially true in the UK, where over two-thirds (72%) of large organisations and over one-third (36%) of small firms identified breaches in 2023 (gov.uk). Hybrid working has exacerbated this challenge.

IT decision-makers (ITDMs) in the UK rate cyberattacks as the third most serious challenge facing their organisations (50%), behind energy prices (61%) and the economic climate (54%). (Expel research)

Solutions must constantly evolve to cope with the speed at which increasingly sophisticated cyber threats emerge. Action needs to be strategic and proactive to be effective. The top three cyber security threats causing the most concern to ITDMs are:

• Malware (causing disruption) – 43%
• Ransomware (for financial gain) – 38%
• Phishing (via emails) – 38%

With cyber threats impacting a growing number of organisations on a regular basis, what steps are UK businesses taking? Research shows that activities include:

• Specific tools for security monitoring – 30%
• Risk assessment covering cyber security – 29%
• Staff testing (mock phishing exercises) – 19%
• Cyber security vulnerability audit – 15%
• Simulated cyberattack (penetration testing) – 11%
• Investment in threat intelligence – 9%

In addition, 55% of large businesses formally reviewed cyber security risks posed by their immediate suppliers. 34% of organisations considered their wider supply chain.

The UK business marketplace simply must harness proactive IT support and technology-led ways of combatting cyber threats.

Five emerging technologies for cyber security:

1. Artificial Intelligence (AI)

AI and machine learning can be used to identify patterns and spot irregularities. Its speed and capacity to evolve help detect threats and automate responses, improving unsupervised cyber security efficiency and effectiveness.

2. Zero Trust Architecture

Strict verification and limited access enhance security, based on the premise that cyber threats can be generated inside and outside the network.

3. Internet of Things (IoT) Security

Innovations in IoT security, such as embedded security measures and regular updates, are essential to safeguarding interconnected devices and networks. This is increasingly important as hybrid and remote working patterns are popular. 85% of organisations allow employees to use personal devices for work purposes (Gartner), increasing the need for effective cyber security training.

4. Penetration (Pen) Testing

A growing approach to understanding your cyber security needs is pen testing. This involves mimicking the techniques of real attackers to test your organisation’s cyber security defences. Just 11% of UK businesses currently deploy pen testing despite the potential to discover and address weaknesses within their own systems. This testing facilitates a tailored, proactive approach to cyber security and is set to grow in popularity.

5. Secure Access Permission and Management

As teams become more distributed, secure access control becomes more time-consuming. A dedicated software platform can grant fast access approval. Access, tracking and auditing are provided effortlessly, saving valuable time and removing the risk of human error. Above all, tasks are performed securely across multiple locations.

How proactive is your organisation about cyber security?

Is your IT infrastructure resilient to cyber threats?

Do you have an incident response plan in place?

If you’d value an initial, confidential discussion without obligation, cost or IT jargon, talk to the friendly experts at EMH Technology.