Firewalls

Section 4 of the Cyber Essentials set is all about Firewalls and how they are used in the organisation. This section is an introduction to firewalls.

What is a Firewall?

A ‘firewall’ is hardware or software that creates a barrier between a ‘trusted network’ (your business) and an ‘untrusted network,’ like the internet. Firewalls protect you from a variety of threats, such as malicious software accessing your computer or network. A firewall can also help prevent Denial of Service (DoS) attacks..

How does it work?

Firewalls check all incoming traffic based on a number of pre-set rules. These rules are used to filter out anything malicious or suspicious. They also help prevent attacks on your network.

Why do I need one?

Firewalls are, quite simply, a crucial first line of defence from a cyber-attack.

Without one, you will allow every connection into your network from anyone. You can’t detect incoming threats and, as a result, could leave your devices vulnerable to malicious users.

I’m ok, I’ve got a firewall

A firewall shouldn’t be your only method of defence. There are a few things you should do to help protect your business and its data. As we’ve said in other blog posts there are five key controls that you need to implement to ensure you are keeping your information safe. Firewalls are just one method of defence, you need to use all the controls correctly to ensure you have a good defence against cyber criminals. All of these are covered within Cyber Essentials, here are the five controls you should have in place:

Cyber Essentials 5 Basic Controls

Control 1

Use a firewall to secure your internet connection. Firewalls act as a barrier between a network and the internet, filtering out malicious traffic and preventing unauthorized access.

Control 2

This control focuses on configuring systems and devices securely, minimizing potential attack surfaces and vulnerabilities. Choose the most secure settings for devices and software.

Control 3

This control ensures that only authorized users can access specific systems and data, limiting the potential damage from malicious actors. Control who has access to your data and services.

Control 4

Implementing robust anti-malware software helps to identify and neutralize malicious software before it can cause harm. Protect yourself from viruses and other malware.

Control 5

Regularly updating software and systems with the latest security patches helps to protect against known vulnerabilities and exploits. Keep your devices and software up to date.

in2secure and Cyber Essentials
in2secure is a Certified Body for Cyber Essentials; the UK government scheme that covers all the fundamentals of cyber security. We’ve completed the assessment ourselves and help other businesses who want to get certified in Cyber Essentials