Helping aesthetics businesses tackle cybercrime
Business services company SJ Partnership has announced its new membership of the Cyber and Fraud Centre Scotland. This not-for-profit organisation is dedicated to fostering a culture of resilience against cyber and fraud crimes within businesses.
It has also announced the addition of Kenny Thomson to its Business Resilience team.
Retired detective superintendent Thomson has joined as a consultant and expert in cybercrime and fraud. He will play a pivotal role in strengthening SJ Partnership's commitment to supporting its clients against the evolving landscape of cyber threats, offering training and guidance, and raising awareness of the risks of cyber and fraud crimes.
Managing director Sue Thomson said, "We are thrilled to welcome Kenny Thomson to the SJ Partnership family. His profound knowledge and experience in cybercrime and fraud bring an exciting dimension to our Business Resilience team. As we navigate the intricate challenges of the digital age, Kenny's insights will be instrumental in ensuring our clients within the medical aesthetics industry are informed and better equipped to protect their valuable assets."
According to UK Government figures, 39% of UK businesses identified a cyber-attack over the past 12 months. The implications for a cyber-attack could range from the financial cost, through reputational damage to the detrimental effect of an attack on staff morale.
Kenny Thomson shared some of his top tips on avoiding internet fraud for aesthetics businesses.
- Fraud and cybercrime awareness must be part of the culture of any business, irrespective of size or structure. Everyone within the organisation has a part to play, although arguably those who lead organisations have the responsibility of ensuring this culture permeates through the entire workforce.
- Organisations must adopt a ‘when not if’ posture and have a well-thought-through plan should the worst happen. It is no good waiting until your organisation has suffered a ransomware attack, and all files and folders on the company system have been encrypted, before thinking about what steps to take, and who should have what responsibility to manage the situation.
- It is critical that organisations understand the threat and take steps to manage the risk. However, even with robust plans in place, they need to be tested and regularly reviewed. Put yourself in the place of the criminal. If you were going to attack your company, how would you do it?
