Knowledge exchange with SMEs

A key work package within CSKE is to engage with a small number of SMEs via a student focused knowledge exchange (KE) model as a way of disseminating good cyber security practice.

Students studying on our MSc Information Security and IT Management will undertake short, flexible placements involving activities to promote cyber security. Placements will be framed around one of the following cyber security themes:

1. Awareness training for company staff.
2. Assisting with information security policy development.
3. Compiling asset registers.
4. Conducting risk assessments.
5. Conducting informal audits based around ISO27001 or, to align with the government’s cyber security strategy, the Department for Business Innovation and Skills' Cyber Essentials programme (2014). This includes assisting with an internal self-assessment needed for certification.

The KE model of working with SMEs and MSc students will accelerate the implementation of the UK Government’s Cyber Essentials programme and hence better security in the sector with corresponding lower risks, improved competitiveness of SMEs and reduced business failure. Initially this has impact in the North West of England, but the model we intend to create will be transferrable to other HEIs delivering such programmes.