Actions to take when the security threat is heightened

Guidance for ADS members

The ongoing conflict in Ukraine has triggered the greatest security crisis in Europe since the Cold War, and with it a heightened security threat for all UK organisations.

ADS has compiled a list of up-to-date guidance and resources from the National Cyber Security Centre and Centre for the Protection of National Infrastructure, as well as our own ADS Cyber Security Toolkit, which will help inform members of the steps and measures they can take to builder a stronger, more resilient security and resilience posture.

National Cyber Security Centre (NCSC) Guidance

The National Cyber Security Centre (NCSC) has called on organisations in the UK to bolster their online defences and follow its guidance on steps to take when the cyber threat is heightened.

While the NCSC is not aware of any current specific threats to UK organisations in relation to events in and around Ukraine, there has been an historical pattern of cyber-attacks on Ukraine with international consequences.

The most important thing for organisations of all sizes is to make sure that the fundamentals of cyber security are in place to protect their devices, networks and systems. The actions below are about ensuring that basic cyber hygiene controls are in place and functioning correctly. This is important under all circumstances but critical during periods of heightened cyber threat.

An organisation is unlikely to be able to make widespread system changes quickly in response to a change in threat, but organisations should make every effort to implement these actions as a priority.

ADS Cyber Security Toolkit

Facilitated and constructed in partnership with ADS Special Interest Group, the Digital Information and Systems Integrity Group (DISIG), the ADS Cyber Security Toolkit – Guidance for the Supply Chain, is supported by the National Cyber Security Centre, and aims to equip the ADS supply chain to cater and respond to the increasing cyber security threats that confront us today.

Centre for the Protection of National Infrastructure (CPNI) Guidance

The Centre for the Protection of National Infrastructure (CPNI) have also compiled the following guides for UK organisations in light of the ongoing situation in Ukraine:

Reporting incidents

You can report to the NCSC if you think your organisations’ cyber security has been compromised here.