Data is an organisation’s most precious resource, and as recent news stories on security vulnerabilities to older versions of Internet Explorer and the internet itself have highlighted, we need to make sure our computers, use of the internet and data is secure. In this free webinar Andy Taylor, Fellow of the British Computer Society, will update charities on the latest best practices and easy, free and low cost things they can do to improve security and keep their computers and data safe. Some of the topics we'll cover are: * security breaches and vulnerabilities in the news * risk assessments * quick and easy - keeping your computers safe and secure * security on the go - mobile devices * encrypting email

1. Easy, Free & Quick
ICT Security for
Charities
We will start the webinar in a just a moment……..

2. • London For All – partnership of LVSC, Lasa,
ROTA, WRC and HEAR
• Only pan-London charity tech advice service
• www.lvsc.org/londonforall/

3. About Lasa
• 30 years in the sector
• Technology leadership, publications, events
and consultancy
– www.lasa.org.uk
• Welfare Rights
www.rightsnet.org.uk

4. Webinar Tips
• Ask questions
Post questions via chat or raise your virtual hand
• Interact
Respond to polls during webinar
• Focus
Avoid multitasking. You may just miss the best part of the
presentation
• Webinar PowerPoint & Recording
PowerPoint and recording links will be shared after the
webinar

5. About the presenters
Andy Taylor – IT security consultant
•Fellow, British Computer Society
•Government security advisor
•Many years of working with charities and
business on IT security and data protection
Miles Maier – Lasa
•ICT Champion & Technology Consultant
•Managing IT, strategy, training
•Project manager Connecting Care and London 4
All
•Twitter: @LasaICT

6. Agenda
• Why IT security matters
• Risk assessments
• Easy, free and quick IT security
• Where to go for help and resources
• Any questions?

7. The Risks to Smaller Organisations
• Heartbleed and other vulnerabilities
• For small businesses:
– Breaches experienced by 60% of SMEs (2013)
– Average cost £65,000 to £115,000 each breach
• Fixing, fines, disruption, reputation
– 31% caused by staff (inadvertently)
• Fines to staff and business (ICO)
• Information Risk = Business Risk

8. Risk Assessments
• The value of your information (to you and to others too!)
• What are the risks - CIA?
– Confidentiality (wrong people seeing it)
• Eavesdropping (staff, visitors, telephones)
• Fraud
– Integrity
• Falsification (accidental, deliberate)
• Destruction (accidental, intentional, when required)
– Availability
• Equipment failure
• Environmental
– Legislation breaches (DPA, HMRC, FoI, RIPA) – ICO registration
– Malicious software (virus, trojan, spam, hoaxes, adware, spyware)

9. Essential Security
• Patching – set up a regular schedule
• Admin accounts – set up on each PC to stop users
downloading unwanted apps
• Malware and anti-virus products donated through tt-
exchange
– Bitdefender: www.tt-exchange.org/partner_catalogues/by_donor/BitDefender
– Mailshell: www.tt-exchange.org/node/638
– Symantec: www.tt-exchange.org/partner_catalogues_symantec/Symantec
• Firewalls – also donated through tt-exchange
– www.tt-exchange.org/partner_catalogues/by_donor/cisco

10. Advice
• UK Government Cyber Essentials Scheme
www.gov.uk/government/publications/cyber-essentials-scheme-
overview
• What small businesses need to know about cyber
security
www.gov.uk/government/publications/cyber-security-what-small-
businesses-need-to-know
• Get Safe Online campaign
www.getsafeonline.org/
• Information Commissioner’s Office
http://ico.org.uk/for_organisations