Advice and guidance

1 Go to resource

Multi-factor authentication for your corporate online services

This guidance describes how administrators responsible for managing access to online digital services for their organisation can apply the strongest types of multi-factor authentication (MFA). It describes the various types of MFA that are commonly available, explains some pitfalls to avoid, and encourages the use of services that support the strength of MFA you require.

Related resources

CSPST: Cyber Security Procurement Support Tool

A public sector tool for the improvement of cyber security in the supply chain.

Supply Chain Security Guidance

Proposing a series of 12 principles, designed to help you establish effective control and oversight of your supply chain.

Holiday Fraud

Top tips to follow to avoid falling victim to holiday fraud.

Scottish Information Sharing Network (SciNET Group)

SciNet is a community for Scottish Buisnesses to engage on CiSP. The Cyber Security Information Sharing Partnership (CiSP) is a joint industry and government initiative set up to exchange cyber threat information in real time, in a secure, confidential and […]

Responding to a cyber incident -a guide for CEOs

This guidance helps CEOs in public and private sector organisations manage a cyber incident. It sets out aspects to consider at the start of an incident and throughout it.

Incident Management

The NCSC defines a cyber security incident as: A breach of a system’s security policy in order to affect its integrity or availability The unauthorised access or attempted access to a system Cyber incidents can take many forms, such as […]