Cyber security is now business survival: what the UK’s new “Lock the Door” campaign means for you

Cyber security is now business-critical. Discover why UK businesses must act fast and the essential steps to protect your organisation today.

UK businesses have been given a clear message this week: cyber security is no longer optional, it’s essential for survival.

The new government campaign is urging organisations to “lock the door” on cyber criminals, backed by data showing many businesses still lack even basic protections.

National Cyber Security Centre (NCSC) has also reinforced this message by providing a warning to those who don’t take the risk seriously: “cyber security is now fundamental to business survival.”

The reality is simple. Cyber risk = business risk.

This push comes after research that reflects the growing threat landscape shows major problems.

• Cyber attacks cost UK businesses £14.7 billion annually.
• Half of small firms experienced a cyber incident in the past year.
• Many organisations still fail to implement basic security controls.

It is vital to remember that attackers do not just target large organisations. They look for easy opportunities and we hate to be the one to tell you this – but if you have no cyber security defences in place then you are the easiest target for them.

The new “Lock the door” campaign

This new campaign is led by the Department of Science, Innovation and Technology and the NCSC. It focusses on practical, accessible steps that businesses can take immediately.

One of these steps is for businesses to get Cyber Essentials.

Cyber Essentials is a campaign that promotes:

• Keeping software up to date
• Controlling access to systems and data
• Using strong authentication
• Implementing anti-malware protections

You can learn more about the benefits of the certification in our blog: https://www.mmbt.co.uk/help-advice/benefits-of-the-cyber-essentials-scheme

What should UK businesses do now?

For many businesses, the first step is not about advanced threat hunting. Instead, it is about getting the fundamentals right. So, after reading this article, these are the things you should do.

Implement Cyber Essentials controls - This remains the fastest way to reduce common attack risk.

Enforce multi-factor authentication (MFA) - Particularly for email, VPN, and admin accounts.

Patch aggressively - Unpatched vulnerabilities remain one of the biggest entry points.

Review access privileges - Apply least-privilege principles across users and systems.

Build an incident response plan -Assume breach and prepare accordingly.

We know it can all seem quite daunting at first but you don’t have to do it alone. If you’re unsure where your organisation stands or how to align with Cyber Essentials and NCSC guidance, now is the time to act.

Get in touch with our team for some guidance and advice.

‍