Advice and guidance

1 Go to resource

Multi-factor authentication for your corporate online services

This guidance describes how administrators responsible for managing access to online digital services for their organisation can apply the strongest types of multi-factor authentication (MFA). It describes the various types of MFA that are commonly available, explains some pitfalls to avoid, and encourages the use of services that support the strength of MFA you require.

Related resources

Incident response template

This resource helps smaller organisations prepare for a cyber incident and gives a ste-by-step guide on how to deal with it.

Digital Economy Skills and Careers

A practical guide for employers on the digital economy skills and Careers including cyber security and digital technology.

Active Cyber Defence

The NCSC’s Active Cyber Defence programme aims to reduce the impact of cyber attacks by providing tools and services, free at the point of use, that protect against a range of threats.

TTX Gym

Running a cyber security exercise is an immersive, effective way to evaluate and practise response skills. Yet, designing and facilitating exercises is complex. TTX Gym provides a custom-designed tool to deliver consistent, effective, and insightful exercising experiences.

Public Sector Cyber Incident Co-ordination Procedure

Outlines the procedures for notifying and coordinating responses to notifiable cyber incidents affecting Scotland’s public services. It defines the agreed-upon cyber incident notification process adopted by the Scottish public sector since 2018.

Small Charity Guide

The advice in the Cyber Security: Small Charity Guide will significantly increase your protection from the most common types of cyber crime. The five topics covered in the guidance are easy to understand, and are free or cost little to implement.