Grant Thornton has implemented increased levels of cyber security and additional staff training as part of the auditing and accountancy firm’s ongoing commitment to protecting clients’ personal data.
The work included an extensive review of existing digital security, including hardware, software, accessibility and data storage, as well as introducing additional training in measures to combat phishing and improve e-mail security for staff at the Douglas office
Grant Thornton has enhanced its already high levels of cyber security by introducing new minimum standards for member firms throughout its global network. The group-wide policy has been updated and revised to take into account the changing nature and sophistication of threats of cyber attack, which cost UK businesses ?34 billion in 2015, according to a recent report.
Richard Ratcliffe, a Director of Grant Thornton in the Isle of Man, said: ‘Cyber security has long been a priority for Grant Thornton, with exceptionally high standards expected in the handling of client and company data. As the complexity of the threats faced by businesses advances we cannot stand still, so a comprehensive review of our systems has been undertaken and a new, enhanced policy produced.
‘Working alongside Grant Thornton International’s global information technology specialists, who have overseen the adoption of the new standards around the world, the Isle of Man office has revisited its encryption of data, virus protection and email scanning, use of cyber security scanning technology, the operating systems used on all devices and servers, firewalls and ongoing cyber security plans.
‘Our position has been assessed by IT specialists from Grant Thornton International and where any improvements or enhancements were identified, these have been implemented.’
He added: ‘In addition, we have reviewed staff awareness and training, using the services of a leading US-based security technologies company. We have created a programme of ongoing training for all staff which will ensure cyber security is always at the forefront of our work and that we are all up to date on the latest developments in cyber crime. The training includes empowering staff to conduct cyber strength assessments, experience phishing simulations to learn how to recognise and deal with attacks and modules on safe web browsing, e-mail security and the secure use of Grant Thornton’s digital assets.’
The review and implementation of the new policy was completed at the end of October.
Mr Ratcliffe said: ‘We deal with personal and confidential information about our clients, and protecting that is one of our key priorities. The threat of data theft and cyber crime is ever-present and changing all the time, and ensuring we are as prepared as we can be at all levels is essential. While the Isle of Man enjoys low crime levels, geographical location is meaningless to cyber criminals who attempt to access and steal data wherever weaknesses in security are found, anywhere in the world, so the Island is not immune.
‘Our clients can be assured that not only do we recognise the importance of cyber security, but are taking proactive measures to enhance our already high levels of defence and ensure an ongoing commitment to maintain the maximum standards achievable.’
Photo - Richard Ratcliffe, Grant Thornton Isle of Man.
