Recent guidance issued by the Department for Business, Innovation & Skills (BIS) emphasises the importance of addressing cyber security as a major threat to business.

The objective of the guidance is to reduce cyber risk in ten critical areas, notably by improving governance to enable and support risk management across an organisation, dealing with physical and network security, and training and management of incidents. As well as providing useful guidance for business on good practice, the report forms a basic standard for contractual compliance for cyber security and should be taken into account in an organisation’s own internal information security policies.