How can the ‘long-tail’ of smaller organisations be protected from cyberattacks?
Large, mature organizations have (mostly) comprehensive cyber and fraud-prevention plans in place to protect themselves. But how do we do the same for small, regional firms that don’t have access to the resources, budgets or deep skills? How far can we get with rolling out coordinated practical, cost-effective solutions – security policy templates, education and staff training and the sharing of information within trusted local communities? Does this give enough of a head start, or do we need all the expensive tools and an army of skilled staff?