Background
Larger customers increasingly ask SMEs for evidence of cybersecurity and data protection.
Questions to ask yourself
- Can we answer a supplier security questionnaire today?
- Do we need Cyber Essentials, or eventually ISO 27001?
- Do we have written policies?
- Can we show evidence of backups, MFA, access reviews, and training?
- Are weak internal systems quietly putting sales opportunities at risk?
What you can do today
Build a credible answer this month
Three things.
- 01Look up Cyber Essentials. The questionnaire is free.
- 02Find your most demanding customer's data-protection clause. Could you evidence it tomorrow?
- 03List the policies you could produce in five minutes: data protection, acceptable use, password, incident response, AI.