Professional Services Security
FAQs
Essential Reading
Cyber Essentials for Consultancies
Cyber Essentials is required for all UK government contracts involving personal data or sensitive information.
GDPR and Client Data Processing
UK GDPR Article 28 requires a written Data Processing Agreement for every processing relationship between controller and processor.
BEC Fraud
Action Fraud: Funds transferred via BEC can be recalled within 24 hours in approximately 25% of cases if reported immediately.
Further Reading
Cyber Insurance for Professional Services Firms
60% of professional services firms have no formal incident response plan — a key factor in cyber insurance underwriting.
ISO 27001 vs SOC 2 for Professional Services Firms
ISO 27001 is recognised by 95% of UK enterprise procurement functions; SOC 2 is primarily a North American standard.