Zero trust: building a mixed estate
Two ways organisations can enable access and maintain the security benefits of zero trust even when parts of the infrastructure can't implement the zero trust principles.
NCSC Feed
Zero trust migration: How will I know if I can remove my VPN?
1 year 10 months ago
In our third blog about migrating to a zero trust architecture, we consider the security properties of an Always On VPN, and the factors to consider when deciding if you no longer need one.
Geopolitical considerations when managing risk
1 year 10 months ago
How organisations working in high-risk countries can improve their cyber resilience.
NCSC for Startups: an ecosystem-based approach to cyber security
1 year 11 months ago
Andrew Roughan, CEO of the NCSC’s innovation partner Plexal, explains why a whole-of-society approach is vital for cyber security innovation.
Phishing and ransomware amongst biggest threats to charity sector
1 year 11 months ago
New report outlines the growing threat that charities face, and how they can become resilient to cyber attacks.
Using MSPs to administer your cloud services
2 years ago
Andrew A explains what you must check before giving Managed Service Providers (MSPs) the keys to your kingdom.
Protective DNS for the private sector
2 years ago
Advice on the selection and deployment of Protective Domain Name Systems (DNS).
How the NCSC thinks about security architecture
2 years 1 month ago
Richard C explains how an understanding of vulnerabilities - and their exploitation - informs how the NCSC assesses the security of computer systems.
Making Principles Based Assurance a reality
2 years 1 month ago
An update on the work to make Principles Based Assurance (PBA) usable in practice.
Principles and how they can help us with assurance
2 years 1 month ago
Explaining the forthcoming NCSC Technology Assurance Principles.
NCSC For Startups: Vistalworks cracking down on illicit trade
2 years 1 month ago
Vicky Brock of Vistalworks describes how the 'NCSC For Startups' programme has helped her organisation develop solutions to tackle illicit online trade.
So long and thanks for all the bits
2 years 2 months ago
Ian Levy, the NCSC’s departing Technical Director, discusses life, the universe, and everything.
Asset management
2 years 2 months ago
Implementing asset management for good cyber security.
Nine months on from the Cyber Essentials update - debunking some myths
2 years 3 months ago
Anne W takes stock of where we are following the changes to Cyber Essentials in early 2022, discussing some of the feedback received and clarifying some common misconceptions.
Cyber Essentials Plus is for charities too!
2 years 3 months ago
Sara Ward, the CEO of Black Country Women's Aid, discusses her organisation's experience of gaining Cyber Essentials Plus certification.
NCSC for Startups: the case for collaboration
2 years 3 months ago
Saj Huq of Plexal explains why collaboration with the NCSC brings opportunities to the cyber security sector.
"Winning trust, and making powerful connections"
2 years 3 months ago
Chris Wallis, CEO of Intruder, explains how completing the NCSC's Startup Programme was a turning point for his organisation.
Authentication methods: choosing the right type
2 years 3 months ago
Recommended authentication models for organisations looking to move 'beyond passwords'.
Protect your customers to protect your brand
2 years 3 months ago
New guidance to protect your brand from being exploited online, and to help you choose alternate authentication models.
Takedown: removing malicious content to protect your brand
2 years 4 months ago
How to protect your brand from being exploited online.
Checked
1 hour 11 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed