Cyber security is the application of technologies, processes and controls to protect systems, networks, programs, devices and data from cyber-attacks. It aims to reduce the risk of cyber-attacks and protect against the unauthorized exploitation of systems, networks and technologies. Common cyber threats include, Malware, Backdoors, Form jacking, Crypto jacking, DDoS (distributed denial-of-service) attacks, and DNS (Domain Name System) poisoning attacks. There are 5 types of cyber security, Critical Infrastructure cyber security, Network Security, Cloud Security, IoT (Internet of Things) security, Application security. Cyber-attacks can cost organizations billions of pounds and cause severe damage. Impacted organizations stand to lose sensitive data, and face fines and reputational damage. A risk-based approach to cyber security will ensure your efforts are focused where they are most needed. Using regular cyber security risk assessments to identify and evaluate your risks is the most effective and cost-efficient way of protecting your organization.