Responsibility for secure configuration and maintenance of IT equipment and services is assigned to a dedicated team. All staff are required and trained to be vigilant in their use of equipment and services.
As a baseline, Institute equipment and processes conform to the requirements of Cyber Essentials, a Government-backed, industry-supported scheme to help organisations protect themselves against common online threats. The Institute is certified to Cyber Essentials PLUS which requires cyber security verification by an accredited expert. Our Cyber Essentials and Cyber Essentials Plus certifications are through URM Consulting Services.
Devices are firewall protected. Only services required to fulfil business needs are allowed through firewalls. All firewalls are set to block external access to any services that do not have an approved, documented business case.
Devices used for data storage are configured to protect data through encryption. Cloud data services used by the Institute encrypt data held on their servers.
Access to and transmission of data is protected through encryption.
The Institute operates a strict passwords policy for access to devices.
Only properly licensed software that is currently required is installed on Institute devices. Installed software is maintained at the latest available version.
Staff access their devices through secure accounts which do not have administrative access.
Auto-run is disabled on laptops.
Device operating systems, drivers and firmware are kept up to date.
Devices are protected using endpoint security from a leading cyber security company. Protection is configured with daily scanning, real-time scanning and web filtering.
The Institute uses a productivity suite configured with advanced threat protection. This actively protects data held in the cloud, including both incoming and outgoing email, from malicious activity.
Office Address:
Willow Court, West Way, Minns
Business Park. Oxford OX2 0JB
+44 (0) 1865 244011
hello@smithinst.co.uk
Quality Policy | IT Security | Health and Safety Policy | Environment Policy | Business Continuity | Privacy Policy | This website uses cookies | Terms of Use
© Smith Institute 2024. All rights reserved. Website by Studio Global
Smith Institute Ltd is a company limited by guarantee registered in England & Wales number 03341743 with registered address at 1 Minster Court, Tuscam Way, Camberley, GU15 3YY