The National Cyber Security Centre (NCSC) states that UK organisations should prepare for an extended period of heightened cyber security threat. It has guidance for organisations on the steps to take to improve security.
The guidance is designed to be applicable to any period of sustained heightened cyber threat, including the one arising from Russia in light of events in and around Ukraine.
The NCSC says that the cyber threat to the UK remains heightened and they expect it to stay that way for some time.
The NCSC guidance aims to help organisations avoid complacency and staff burnout. It advises that increased workloads for cyber security staff over an extended period can harm wellbeing and lead to lower productivity, with a potential rise in unsafe behaviours or errors.
The recommended actions in the guidance include:
- following the NCSC's actions to take when the cyber threat is heightened guidance;
- revisiting risk-based decisions taken during the initial phase of heightened threat;
- empowering cyber staff to make day-to-day decisions about the threat response without requiring additional oversight;
- ensuring workloads are spread evenly across individuals and teams;
- ensuring frontline cyber staff can take breaks to recharge; and
- accelerating planned action to harden networks and boost defence capabilities. See: [Maintaining a sustainable strengthened cyber security posture - NCSC.GOV.UK](https://www.ncsc.gov.uk/guidance/maintaining-a-sustainable-strengthened-cyber-security-posture)
If you have been running a business for a while, maybe as a sole trader or in a partnership, you may have heard someone say, “You should incorporate”.
The National Cyber Security Centre (NCSC) has published a blog post exploring the potential for ‘vibe coding’ replacing the Software-as-a-Service (SaaS) business model. While not suggesting that vibe coding is ready to take over now, they conclude that vibe coding is following a pattern similar to cloud adoption 20 years ago.