How to identify your organisation’s most critical third party risks
Explore third party risks and learn how to identify and manage the potential impact on your organisation’s security and operations.
Security How To Guides
Step-by-step guides for security success
Our security how to guides provide practical advice on how to quickly deal with common security incidents, and how to protect yourself in the future.
Free consultation
How to build a strong security culture across your organisation
Learn how to build a strong security culture by embedding practical processes, leadership support and behaviour-based training into everyday operations.
How to recognise and respond to social engineering attempts
Learn how to recognise and respond to social engineering attempts with practical steps to verify requests, limit information sharing and reduce organisational risk.
How to explain cyber and physical security risk in business terms
Security teams are good at understanding risk, but many struggle is in getting that risk taken seriously by decision makers. This guide explains how to translate security risk into business terms that support better decisions and stronger resilience.
What should you do to stay secure when working from home?
Without a security-conscious approach, remote working can unintentionally expose organisations to cyber, physical and information security risks.
What should you do if you experience a ransomware attack?
The first few hours matter most. Calm, disciplined actions can prevent wider damage, preserve recovery options, and protect the organisation legally and financially.
What should you do to prevent invoice fraud?
A simple, consistent verification process can make the difference between stopping fraud early and suffering a financial loss. This guide sets out the practical steps that should be followed before paying any invoice from a new supplier or when bank details change.
How to train staff to challenge suspicious behaviour without creating conflict
Most physical security incidents do not start with someone forcing a door or smashing a window. They begin with someone walking into a space where they do not belong and no one feeling comfortable enough to say anything. In busy offices, hospitals, warehouses, data centres and shared buildings, people are
What should you do to stay safe whilst commuting?
Commuting often involves crowded spaces, distractions and unfamiliar environments. These conditions increase the risk of theft, surveillance and accidental data exposure. A calm, consistent and security-conscious approach can significantly reduce that risk.
What to do if your company laptop or mobile device is lost or stolen
Lost or stolen devices are a common cause of security incidents. A calm, methodical response in the first few minutes helps contain the situation and protects both personal and organisational information.
What should you do if you suspect a website DDoS attack?
Website DDoS attacks aim to overwhelm systems, networks or applications so legitimate users cannot access them. Calm, structured action in the early stages can significantly reduce operational and reputational impact.
What should you do if you suspect you have been vished (voice phished)?
Vishing, or voice phishing, uses impersonation, urgency and confidence to manipulate people over the phone. A calm and structured response in the first few minutes can prevent account compromise, data loss or financial harm.