Guidance

10 Steps to Cyber Security: Advice Sheets

Detailed cyber security information and advice across 10 critical technical and procedural areas.

From:
CESG, Department for Business, Innovation & Skills, Cabinet Office and Centre for the Protection of National Infrastructure
Published
5 September 2012
Last updated
16 January 2015 — See all updates

This publication was withdrawn on

This content has been moved to the CESG website: https://www.cesg.gov.uk/10-steps-cyber-security

Documents

10 Steps: Information Risk Management Regime

HTML

10 Steps: Secure Configuration

HTML

10 Steps: Network Security

HTML

10 Steps: Managing User Privileges

HTML

10 Steps: User Education and Awareness

HTML

10 Steps: Incident Management

HTML

10 Steps: Malware Prevention

HTML

10 Steps: Monitoring

HTML

10 Steps: Removable Media Controls

HTML

10 Steps: Home and Mobile Working

HTML

Details

The actions and measures detailed in each of these advice sheets collectively represents a good foundation for effective information risk management. The degree of implementation of each step will vary between organisations depending upon the risks to their individual business. However, GCHQ’s recommendation is that Boards should require their CIO and CISO to be able to articulate why a particular measure is not applicable.

This document is part of the 10 steps to cyber security document set.

Updates to this page

Published 5 September 2012
Last updated 16 January 2015 + show all updates

  1. Added the 10 steps cyber security advice sheets

  2. First published.

Sign up for emails or print this page

Related content