Cybersecurity FAQ

Common indicators include unexplained network traffic spikes, systems running slowly without reason, unusual logins at odd hours, missing or encrypted files, strange new user accounts, and receiving reports from customers or partners about suspicious emails or activity appearing to come from your domain. A managed SOC like CommuniCloud's continuously monitors for these indicators and alerts you immediately.

The top threats targeting Australian organisations currently are: business email compromise (BEC) and phishing campaigns, ransomware delivered via email and compromised remote access, supply chain attacks targeting software and service providers, insider threats (both malicious and accidental), and credential stuffing attacks using leaked username/password pairs. CommuniCloud's threat intelligence team monitors these vectors 24/7.

No — small and medium businesses are actually more frequently targeted than large enterprises because they typically have less sophisticated defences. Attackers automate their campaigns to exploit easy targets at scale. A 20-person law firm or accounting practice holds valuable client data that's just as attractive to attackers as a large corporation's, with typically far weaker defences.

The Essential Eight is the Australian Cyber Security Centre's (ACSC) prioritised list of mitigation strategies. It's mandatory for Commonwealth government entities but highly recommended for all Australian businesses. CommuniCloud helps organisations assess their current maturity against the Essential Eight and implement the strategies systematically. ISO 27001 and the Essential Eight complement each other well.

According to IBM's Cost of a Data Breach Report, the average cost of a data breach in Australia is over AUD $4.5 million — including direct costs like incident response, regulatory fines, and legal fees, plus indirect costs like reputational damage, customer loss, and operational disruption. Prevention through managed security services is a fraction of this cost.

Zero trust is a security model based on the principle "never trust, always verify" — every user and device must authenticate and be authorised before accessing any resource, even inside your network. It replaces the old perimeter security model (trust everything inside the firewall). CommuniCloud implements zero trust through ZTNA (via Cato Networks), multi-factor authentication, and least-privilege access controls.

Our mean time to detect (MTTD) for critical incidents is under 15 minutes, and mean time to respond (MTTR) is under one hour for critical events. We have defined SLAs for different severity levels, and our on-call team is available 24/7/365 to initiate response procedures.

We can ingest logs and alerts from virtually any system: Windows and Linux servers, firewalls (Fortinet, Cisco, Palo Alto), endpoint protection (CrowdStrike, SentinelOne, Microsoft Defender), cloud platforms (Azure, AWS, GCP), Microsoft 365, Active Directory, network switches, and custom applications via syslog or API. Our onboarding team handles the integrations.

An MSSP (Managed Security Service Provider) typically monitors and manages security tools. MDR (Managed Detection and Response) goes further — it includes active threat hunting, investigation by analysts, and hands-on incident response. CommuniCloud provides MDR: we don't just alert you, we investigate and help you respond.

DMARC (Domain-based Message Authentication, Reporting and Conformance) prevents attackers from sending emails that appear to come from your domain. Without DMARC, anyone can send emails impersonating your business — targeting your customers, suppliers, and staff. CommuniCloud implements DMARC alongside DKIM and SPF as a baseline email security measure. It's not optional for any business that cares about its brand reputation.

Sophisticated attackers constantly evolve their techniques to evade detection. This is why CommuniCloud layers multiple detection methods — signature-based, behavioural AI, sandboxing, and human analyst review of edge cases. No solution catches 100% of threats, which is why we also provide security awareness training to make your staff a second line of defence.

The Essential Eight is a tactical checklist of specific technical controls recommended by ACSC. ISO 27001 is a comprehensive management system standard that includes the Essential Eight controls and much more — governance, risk management, supplier security, business continuity, and ongoing improvement. ISO 27001 certification demonstrates a mature, systematic approach to information security rather than just ticking control boxes.

Yes. ISO 27001 is recognised by Australian government agencies and increasingly required for contracts. It aligns with the Australian Government's Information Security Manual (ISM) and the Protective Security Policy Framework (PSPF). Many government panels require ISO 27001 or equivalent certification as a prerequisite for consideration.

No. While highly regulated industries like finance and healthcare have explicit compliance drivers, ISO 27001 benefits any organisation that handles sensitive customer, employee, or business data. Increasingly, enterprise clients require their suppliers and service providers to hold ISO 27001 as part of their own supply chain security programs.