Reducing Risk Through Strong Foundations

Strong cybersecurity isn't built through a single tool or technology. It's created through layers of good practice that work together to reduce risk and improve resilience.

Whether it's securing home offices, addressing ageing technology, or ensuring core security controls are consistently applied, the foundations of a secure environment remain as important as ever.

Reducing Risk Through Strong Foundations

Clean Desk Policy: Securing Your Home Office From Physical Data Leaks

A modern clean desk policy is about more than keeping your workspace tidy. In hybrid and remote environments, it helps prevent physical-to-digital shortcuts that can expose sensitive information and business systems.

From unlocked screens to shared devices and unsupported home networking equipment, seemingly small oversights can create opportunities for data loss or unauthorised access.

Why It’s a Risk:

Unlocked devices can expose sensitive information to family members, visitors, or unauthorised users

Home routers and personal devices may not receive the same security oversight as corporate equipment

Shared devices and poor physical security increase the risk of data leakage

What You Can Do:

Lock your screen every time you step away and configure a short auto-lock timer

Avoid sharing work devices with family members or guests

Keep home routers supported, patched, and securely configured

Store laptops securely when not in use

Use strong sign-ins and MFA wherever possible

Ensure endpoints are regularly updated and restarted when prompted

The Oldest Risks to Find First – Legacy Debt

Legacy debt rarely appears as a single catastrophic issue. Instead, it builds gradually through outdated systems, unsupported devices, delayed updates, and exceptions that become accepted as normal.

Over time, these risks accumulate until they create security vulnerabilities, operational disruption, or costly recovery efforts.

Why It’s a Risk: 

Unsupported devices and software no longer receive security updates

Delayed patching increases exposure to known vulnerabilities

Older systems often lack modern security controls and monitoring

Untested backups and recovery plans can fail when they're needed most

What You Can Do:

Identify end-of-support firewalls, routers, VPN gateways, and internet-facing systems

Prioritise replacement of unsupported products

Review servers for patching gaps, unnecessary services, and weak administrative controls

Test backup and recovery processes regularly

Isolate systems that cannot yet be replaced

Key Security Layers Your Business Should Consider

Effective cybersecurity relies on multiple layers working together. While individual controls are important, real resilience comes from ensuring each layer supports and reinforces the others.

A weakness in any one area can create opportunities for attackers to bypass otherwise strong security measures.

Why It’s a Risk: 

Security controls are often implemented inconsistently across the business

Gaps between security layers can leave organisations exposed

Over-reliance on a single control creates unnecessary risk

What You Can Do:

Enforce phishing-resistant authentication and MFA

Define device trust and compliance requirements

Strengthen email security and user risk controls

Implement continuous vulnerability scanning and patch management

Test detection, response, and recovery procedures regularly

Establish clear governance, ownership, and security standards

Vulnerabilities & Further End-of-Life Notifications

Staying aware of newly disclosed vulnerabilities and active threats remains essential for reducing exposure and prioritising remediation.

Active Vulnerabilities & Security Advisories

End-of-Life Reminders

  • Cisco Meraki MR33 Access Points Reach End of Support – 21 July 2026
    Cisco Meraki MR33 access points reach End of Support (EOS) on 21 July 2026. After this date, Cisco will no longer provide technical support, firmware updates, security patches, or hardware replacements for faulty units. Organisations should begin planning replacement or upgrade projects to maintain support and security.
  • Reminder: Windows Server 2016 Reaches End of Life – 12 January 2027
    Windows Server 2016 reaches its final End of Life (EOL) on 12 January 2027, when extended support ends. After this date, Microsoft will no longer provide security updates, bug fixes, or technical support, significantly increasing cyber risk. We recommend planning an upgrade to Windows Server 2022 or Windows Server 2025, depending on hardware and application compatibility, or considering a move to a cloud-based environment. If migration isn't possible before the deadline, Microsoft will offer Extended Security Updates (ESU) for a limited period, although these will be chargeable and are expected to increase in cost each year.

Visibility, Awareness and Control

29 May 2026

Cybersecurity risks are not always caused by sophisticated attacks or major system failures. In many cases, risk builds quietly through everyday habits, overlooked processes, and limited visibility into where data is stored or how users interact with systems.

Bluebeam Max: The Superpower Taking Revu Into the AI Era

19 May 2026

The construction industry is entering a new era, and Bluebeam is once again leading the way. In 2026, Bluebeam Max will launch as a new premium subscription that combines the power of Revu with advanced AI technology. This blog highlights just some of features you will expect to see within Bluebeam Max.