What is a security policy?

It is an informal document that outlines the organization’s approach to information security

A policy to protect only the company’s assets

The tree options are correct

It is a formal document that sets the rules, guidelines, and responsibilities for protecting the company’s assets, data, and systems from potential threats and unauthorized access

Why it is important to understand the cybersecurity and the security policies?

Cybersecurity measures protect sensitive and confidential data from unauthorized access, theft, or misuse

Understanding cybersecurity allows individuals to be aware of the various cyber threats and risks that exist in the digital landscape

The three answers are correct

Security policies play a significant role in preventing data breaches and cyber-attacks

Please, indicate which answer is true:

Cyber-attacks can cause negligible financial losses to MSMEs

A successful cyber-attack can damage an MSME’s reputation, leading to a loss of customers and opportunities

Customers and partners often do not prioritise security when choosing business partners, making cyber security a valuable differentiator

Educating staff about best practices, potential threats, and security policies help create a strong security culture within the organization

Please, point out the common cybersecurity threats to MSMEs

All answers are incorrect

Phishing Attacks, Supply Chain Attacks, Unsecured IoT Devices

Insider treats, Infections and Well-configured security settings

Data Breaches, Weak Passwords and Authentication, Malware Infections

What steps an MSME can take to assess its cyber security vulnerabilities?

The three answers are correct

Identify Assets and Data, Conduct a Risk Assessment and Check Physical Security

Ensuring wi-fi network security, Penetration Testing and Evaluate Software and Applications

Check Physical Security, Examine Employee Awareness and Review Password Policies