Construction data breaches are on the rise, with data from Kroll showing a staggering 800% rise between 2019 and 2020. Meanwhile, a study of 1,200 ransomware attacks between 2020 and 2021 by Nordlocker found that construction was the most attacked industry
The conflict in Ukraine has only increased the risk, with the National Cyber Security Centre (NCSC), part of GCHQ, urging businesses to bolster their online defences.
The rise of cloud platforms
Cloud platforms really came into their own during Covid-19, allowing remote teams to collaborate effectively. However, it is important to be aware of the potential security risks, and that rules governing data ownership.
Alexandra and Matthew discuss the types of security risks facing the construction sector, and the motivations behind them.
They also look at the types of data that need to be protected, as not everything will have to be locked away behind impenetrable walls.
Protecting the construction industry from data breaches
But the key to protecting data is knowing where it is. Where data held in the cloud is physically stored is crucial because laws covering data vary from country to country.
Protecting that data requires an information security strategy backed by good personnel, physical and cyber security, all overseen by strong governance and accountability.
Alexandra and Matthew also look at the NCSC’s 14 steps to cloud security, as well the questions to consider over vetting employees, securing the supply chain and what happens to data after handover of a project.
In addition, there is a checklist from 3D Repo for selecting a cloud system, covering data access, storage, use and removal.