Work with Supply Chain Primes and Cyber Insurers results in Risk Scoring for 2020

In 2019 we worked closely with Supply Chain ” Primes ” and with Cyber Insurance Underwriters and Brokers to produce a Risk Scoring solution that met their requirements.

Amongst other things – it had to be low cost, simple to use and interpret, non-intrusive on the organisation being monitored and risk scored and accurate in it’s score.

Support overheads should also be low.

This was a major development project for us and we are looking forward to a very exciting 2020 as we roll out to many supply chain primes, Enterprises and SMB’s.

Clearly many of the SMB’s that we set out to protect are part of supply chains and also insured by SMB focused underwriters and brokers,

The focus remains on securing against the 5 Controls of the Cyber Essentials standard however as always this also means that we cover most of the important elements of other standards like C.A.F. and N.I.S.T.

We can expect to see more and more cyber insurers put references to Cyber Essentials in their application forms ( already the case ) and we can expect more and more supply chain primes insisting that their suppliers are cyber secure to the Cyber Essentials standard as possible.

#missionpossiblecyber #CyberSecurity #cyberessentials

We found extraordinary numbers of devices in home and SMB in 2019 ..

but in 2020 with the £20 smartplug and ip camera we are going to see so many more ..

It probably shouldn’t have been but the number of devices in people’s homes, home offices and small businesses was our greatest surprise in 2019.

My son has twice pointed out and then purchased £20 ip cameras and then smartplugs.

He gets them and then we get them.

Sometimes in a 2 adult, 2 children family we see 70/100 devices.

That’s because everything is connected these days and at low cost.

In 2020 the number of devices is going to explode and not just in homes and small businesses but also, for example, in retail stores.

They bring a lot of value for around £20 but they don’t bring security – because that would increase the cost over the ” crucial price point “.

They certainly do increase the number of ” back doors ” into home and small business networks and therefore, potentially, into enterprises that they work with.

Enterprises are watching this growth of unsecured devices with massive concern ..

LuJam supports Cyber Essentials in Jersey and Guernsey Channel Islands

Working with our partners in the Channel Islands LuJam Cyber is helping to cyber secure the Islands fast.

Wherever Cyber Essentials is being adopted as a standard in the world we are active and this is particularly true of Commonwealth and ex Commonwealth countries.

As part of #MissionPossibleCyber we are helping to cyber secure SMB’s across the UK and Ireland, the Channel Islands and the Isle of Man.

Some parts of the country are adopting Cyber Essentials faster than others and are putting strong incentives in place e.g. Scotlands £1000 for 1000 SMB’s scheme to get 1000 SMB’s secure by the end of March 2020.

LuJam provides Continuous Monitoring against the Cyber Essentials 5 controls standard.

Within 7 days you can be secured to the Cyber Essentials standard.

Contact chris@lujam.com or +447881 500002 and we will put you in touch with one of our partners.

Here is the situation in the Isle of Man https://www.financeisleofman.com/news/isle-of-man-businesses-can-now-apply-for-funding-to-support-cyber-security-accreditation/

Here is the situation in Scotland

Ireland is also supporting Cyber Essentials https://www.itgovernance.eu/en-ie/cyber-essentials-ie

LuJam supports Scottish £1000 Cyber Essentials scheme

Look at this amazing scheme available to #SMB‘s in Scotland !!

It is becoming more and more important to be Cyber Secured to the Cyber Essentials level and also to be Certified.

There are similar schemes running in the Channel Islands and Home Counties and West of England but this is the best we have seen.

Working with our partners LuJam Cyber can make this £1000 go a really long way.

When our LuJam sensor is installed it will automatically analyse and protect to the Cyber Essentials standard.

Working with one of our Certification bodies you can get the basic CE Certificate and be well on the way to Cyber Essentials plus. Our integrated Vulnerability Scanner and MSP API and Advanced End Point Agents ( for example ) are going to be a very important part of the solution.

Contact me on chris@lujam.com or +447881 500002 and I will put you in touch with one of our partners.

For your information: The Cyber Essentials standard is growing across the world – especially in Commonwealth and ex Commonwealth countries like Canada and West Africa and Australia.

More on the Scottish £1000 offer here https://www.scottish-enterprise.com/learning-zone/business-guides/components-folder/business-guides-listing/keep-your-business-cyber-secure

Here is the situation in the Isle of Man https://www.financeisleofman.com/news/isle-of-man-businesses-can-now-apply-for-funding-to-support-cyber-security-accreditation/

Discover the situation in Jersey, Channel Islands

States of Jersey suppliers certification requirements

From 2018, suppliers awarded any new government contract worth more than £25,000 will need to commit to adopting Cyber Essentials, or a higher standard, within 12 months.

From 2020, all suppliers in receipt of contracts valued at more than £25,000 will need to demonstrate adherence to Cyber Essentials or a higher standard.

https://www.gov.je/StayingSafe/BeSafeOnline/ProtectYourBusinessOnline/pages/cyberessentials.aspx

https://www.gov.je/StayingSafe/BeSafeOnline/ProtectYourBusinessOnline/pages/cyberessentials.aspx

Guernsey is following similar guidelines.

https://www.ciisf.org/

Ireland is also supporting Cyber Essentials – https://www.itgovernance.eu/en-ie/cyber-essentials-ie

Hertfordshire has this scheme running – https://www.hertsgrowthhub.com/cyber-security

Cyber Insurers jostle for pole position in exploding market

Reduced risk equals reduced premiums or other incentives.

Reduced risk requires continuous visibility and monitoring and assessment.

The Black Box vehicle insurance model provides a framework for understanding how information transmitted to a ” data centre ” about the way a young person drives a car will result in that person receiving a reduced premium or other incentives .. or not.

If business owners run their businesses in a way that ensures practical protection against the most common cyber attacks then they will equally be rewarded.

This model already exists in a simple way. Right now if you go to certain Cyber Insurance companies and you have the Cyber Essentials certification you will get incentives for this.

However Cyber Essentials is like your MOT – it is an annual event and a lot can happen within the year. Your systems can be altered so that ” holes ” appear for example.

It is likely that Cyber Essentials will recommend and Cyber Insurers will insist upon continuous monitoring against the Cyber Essentials ( or equivalent in other countries ) standard.

Exactly like the vehicle black box requirements.

Exactly how this ” Black Box for Businesses ” that we have will be utilised and what incentives will be provided has yet to be determined.

For certain many cyber insurers want to provide the best solution at the best price. They want to either remain or become the premier provider of cyber insurance globally.

If you speak to cyber insurance brokers about who is the best underwriter in the space at the moment it comes down to the clients specific requirements and the wording in the cyber insurance terms and conditions and the coverage of certain risks.

Download Report on Cyber Insurance market here >> https://www.alliedmarketresearch.com/cyber-insurance-market

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.

We have BIG DATA – how much would you like ??

We don’t collect all the data on our clients networks but we do collect a lot of it.

Our partners and clients have differing views on how much of it they want.

At one end we have, for example, supply chain heads ( eg Global Manufacturers ) and cyber insurance companies that simply want an overview.

We sometimes refer to it as ” Traffic Light Information ” eg Red light – it is NOT cyber secure. Amber – some issues. Green – It is secure. On a daily basis.

Others might say just give us a Risk Score – say 95% secure. Or a Pass or Fail.

For many reasons they don’t want to impose or pry and they don’t want the deep detail.

At the other end of the scale are those ( probably our Managed Service Provider and Cyber Security Consultant Partners ) who want cyber security risks highlighted – probably as part of their overall management ( SIEM ) platforms – and then be able to drill down into the details where there are problems and employ specific tools eg Vulnerability scanner or end point agents to further analyse the situation.

They might want to know not just which device is the issue but whose device that is and what operating system and applications it is using.

When we designed our solution originally the amount of data and the user interface was appropriate for the home user or small business manager.

The amount of data and the way it is presented is not really a massive deal to us.

The solution is built to integrate. It is multi-tenant and white label-able.

You tell us how much of our Big Data you want and we will work with you to present it in a way that suits you.

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.

LuJam Technical Updates

Working with and guided by GCHQ/NCSC/IASME and our Partners and our Partner Steering Group we are rapidly adding functionality to our solution.

If you want to see our latest Technical Announcements look HERE

If you have any suggestions as to what we can add to our solution to help you as a partner or an end user please let us know.

You can submit a suggestion HERE.

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.

LuJam Cyber Security Authorised Partner List

We have partnered with a select number of companies in the UK and abroad. Some partners have International reach and operations.

This list is growing all the time and so it may not include all partners at all times.

Our partners tend to be leading edge, innovators and early adopters and they want to work with a disruptive company who understands that the PRIMARY GOAL is to get SMB’s and Supply Chains Cyber Secure as soon as possible. Certification is a validation of being secure and the secondary objective. Continuous monitoring against the relevant Cyber Security standard is increasingly a mandatory requirement.

In broad terms this list runs from North to South of the UK.

ntehttps://www.nte.works/ – National/International –

We listen carefully to understand your success factors, simplifying technology and delivering solutions that have a real and positive impact on your business.

Safe & Secure IT Solutions – North – http://www.sas-its.co.uk/

The easiest way to protect your business, without sacrificing your resources, time, or budget.

Vorago Security – North – https://www.voragosecurity.com/

SECURITY SHOULD BE SIMPLE
LET US HELP KEEP IT THAT WAY

Security should be built around your business operations, we can design and implement security to fit. 
We are focused on finding solutions to security risks that work for you.

Solid Systems Global http://www.solid-global.com/

“SOLID SYSTEMS GLOBAL MISSION IS TO PROVIDE FLEXIBLE AND COST EFFECTIVE MULTI-VENDOR ENTERPRISE HARDWARE SUPPORT SOLUTIONS TO OUR CUSTOMERS WORLDWIDE.”

“OUR VISION IS CONSTANTLY SETTING A BENCHMARK FOR BEING AN UNSURPASSED GLOBAL INDEPENDENT SERVICE PROVIDER OF CHOICE.”

Elite Receptionhttps://elite-reception.co.uk/

Satellite, TV, Sound Systems,CCTV,Alarms,Security.

CyberQ Group – Midlands/International – https://cyberqgroup.com/

Award Winning Artificial Intelligence and Automated Cyber Security.

We make your business Resilient.

Ilicomm – Midlands/National https://www.ilicomm.com/

Working with businesses across the UK & Ireland helping to reduce IT expenditure and mobilise their workforce

IASMEhttps://www.iasme.co.uk/cyberessentials/

IASME assesses and certifies organisations against two standards at both the self assessment and audited levels.

  • The IASME Governance Standard
  • The Cyber Essentials Scheme

The self assessment cost includes includes automatic cyber liability insurance for any UK domiciled organisation with less than £20m annual turnover, terms apply.

Risk Evolveshttps://www.riskevolves.com/

Bringing cyber security, GDPR and risk management expertise into your business, granting you the freedom to innovate and the confidence to grow

Sort-IThttps://sort-it.biz/about/ Formed in 2003, Sort-IT started out with the aim to break the boundaries between technology and companies.Our goal is to aid and grow existing IT infrastructure, making best use of it within a company, whether that be hardware or software. By allowing us to take the responsibility and pressure of running IT away from the company, it allows them to run their business withdrawing the worry of the IT.With a friendly, can do mentality, Sort-IT go all-out to make your life easier.

Safe and Secure Worldhttps://www.safeandsecure.world/

HELPING YOUR BUSINESS BE COMPLIANT AT AN AFFORDABLE COST

Dial A Geek – West – https://www.dialageek.co.uk/

Tell us where you are today 
and we’ll help you build for tomorrow

Astrixhttps://astrix.co.uk/

We believe in helping to create a future in which everyone can be secure, confident, and efficient in their cyber lives.

We work to achieve this by providing people with the insight, understanding, and tools to stay safe from risks and threats.

Alphatec Systems Limitedhttp://alphatecsystems.co.uk/

IT Support Weston Super Mare & The Westcountry

When your IT system lets your business down, you want fast, efficient IT support.

OxSec Limited – Midlands/National https://oxsec.co.uk/#contact-1

We make Cyber Defence

painless and seamless.

Octree Limitedhttps://www.octree.co.uk/ – Midlands/South

Providing specialist IT Support to the Finance, Accounting and Legal sectors

Electromech ECShttps://www.electromech.co.uk/products/lujam-cyber-protection-systems/

Electromech ECS – Trusted With Technology today and in the future!

CELEBRATING OVER 30 YEARS AT THE FOREFRONT OF TECHNOLOGY

Macnamara ICT Limited – London/National https://macnamara-ict.co.uk/

Making IT better for everyone

CHOOSE MACNAMARA AND REAP THE REWARDS

Freedom Tech Solutions – London/International https://freedomtech.solutions/ – Technology: Unleash the power of your abilities

BC Technologies – South – https://www.bc-technologies.co.uk/

A friendly forward thinking team, we would love the opportunity to discuss your IT issues. As well as Cyber Security and IT Support we offer a range of related products such as CCTV and phone systems.

je3.com – Channel Islands – https://je3.com/IT SOLUTIONS THAT WORK

The Cyber Highway – Global – https://www.thecyberhighway.com/

The Direct Route to
Cyber Essentials Certification –
and a safer Cyber Future for
your business.

Cisware – France/International https://cisware.com/en/

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.

Being Cyber Secure is important but so is….

being in Control of your business….

and being in control means that you have the right business information at your finger tips displayed in a simple and meaningful way…

That might mean that it is integrated into your Business Information applications. Part of an overall Business Information dashboard.

To get the information you need to ..

Detect ..

the presence of all devices that are using your networks. Not just PC’s, laptops, ipads and mobiles but ALL IoT devices … alarms, cctv, voice activated devices,manufacturing controls etc etc

Company issued devices and Bring your own Device ( BYOD ) .. those network using devices that staff and visitors bring into your business premises.

It is nearly always a surprise to our clients how many devices are actually in use in their premises.

When you have detected them you have VISIBILITY of the hardware aspect and then you need to

Monitor ..

Who and what and where and when and why are these devices talking to ?

On your premises or off your premises ?

What is the typical pattern of communications ?

( A useful facility built into LuJam is that of monitoring your Internet Connection – when is it up or down ?? )

We establish ” normal behaviour ” and we are increasingly able to detect and highlight abnormal behaviour ( eg the salesperson that hates using the CRM application but is suddenly on it for 48 hours straight … is he leaving ? )

We also find that people are using applications and visiting websites that they shouldn’t be. ( Bad websites are simply black listed and blocked – but can be white listed )

Now you have VISIBILITY of how devices and applications are being used on your network and a

Digital Asset Register..

and you have an understanding of communications and applications usage patterns

NOW you are really getting in control !!

Now COMPLIANCE with the policies and directives that you issued as a Director of the Business with Fiduciary Duties in an effort to comply with eg GDPR Regulations – can be verified.

( N.B. Typically a companies board has to think about many aspects with regard to cybersecurity:

Regulation: Are regulatory requirements being met?

Fiduciary duty: Is the company acting appropriately with regard to cybersecurity for our stakeholders ( customers and shareholders ) ?

Company liability: How does a failure to perform effectively in cybersecurity affect overall business performance?

Personal liability: If I am the CISO and we underperform in cybersecurity, might that affect my position? )

Now your Cyber Insurer can assess the

RISK

in your business.

Your Cyber Security responsible person or company can easily help you get certified to Government standards ( Cyber Essentials, CE Plus, ISO 27001 ) but this will not just be an annual assessment it is a 365,24-7 compliance with those standards.

With a

Risk Assessment and Cyber Essentials certification your Cyber Insurer will balance Risk against Premium and be inclined to reward you for your efforts.

So you are cyber secure, you are in control, you are compliant, your policies are actually being adhered to you saved the business money on cyber insurance and GDPR risks and we like to say..

Peace of Mind has arrived.

N.B. We develop LuJam Cyber guided by GCHQ, NCSC, IASME and our partners and clients. If there is something you would like to see us doing please let us know.

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.

LuJam Cyber Security Management Team gear up for Global Growth

We are just reaching the end of our time in the GCHQ/NCSC/Wayra Cyber Accelerator near Cheltenham and have the honour of going straight into the Tech Nation Top 20 UK Cyber Security Global Scale Ups.

In an earlier blog post we talk about the final presentation that we did to top Government and Security officials in the Royal Society of Arts.

For this we worked hard on updating, honing our message and simplifying it.

Yes we are a Cyber Security company focused on the SMB market. We were guided by GCHQ/NCSC/IASME into providing continuous ( 24/7, 365 ) monitoring against the Cyber Essentials standard.

We could actually provide continuous monitoring against any Cyber Security standard anywhere in the world.

We have also been guided by our Managed Service Provider and Cyber Security Consultant partners and Supply Chain Heads and Cyber Insurance providers into being a pro-active cyber security, compliance and risk scoring provider.

Our Managed Service Providers also want us to integrate into their existing proactive management systems, including computer security, security information and event management ( SIEM ) systems.

They have many management tools but not, typically, a cyber security management system that is affordable and easily integratable.

A product that may have been described early on in it’s development as a managed firewall device has become a solution for discovery, awareness, monitoring,control,penetration and ultimately peace of mind.

We are very fortunate to have drawn together a very strong and experienced team that has started and built up many companies. Taking some to Silicon Valley and New York and others to UK exits.

When you consider that 97% of all companies globally are SMB’s and the fact that we are also involved in the Remote Office and Home Worker sectors it is obvious that we have a huge global market for our solutions.

If you would like an online demonstration of the LuJam Cyber solution please contact chris@lujam.com or call +44 (0)117 373 6186 and ask for Chris ref. online demo.