Cyber readiness for small organisations

When cyber goes wrong, here’s what to do next.

Free cyber drills, Daily Int Briefs, vulnerability briefs, templates, training and practical guidance for small businesses, charities and community groups without a dedicated cyber security team.

I need help now Get free templates Book a Readiness Review

Immediate drills Vulnerability Brief Free Field Manual

Current mission

Make practical cyber support accessible to organisations that cannot afford a security team.

Situation

Small organisations face real cyber threats but often lack budget, time and specialist support.

Mission

Translate cyber risk into simple drills, checklists and training that people can act on.

Contact

Email hello@actionsoncyber.com for training, readiness reviews or consultancy.

Company owner profile

Led by an ex-military cyber security professional.

Actions On Cyber is owned and led by an ex-military Cyber Security Professional with Security Operations and Design experience across Defence and the UK Finance Sector.

He holds an MSc in Cyber Security, Postgraduate Diploma in Business Administration, a BSc(Hons) in Engineering Management, CISSP, CCSP and professionally registered as a full member of the Chartered Institute for Information Security (CIISec).

The company combines operational discipline, cyber security expertise and business understanding to help small organisations, charities and community groups take practical action against cyber risk. The focus is on clear, plain-English guidance that helps people understand what to do before, during and after a cyber incident.

The approach is simple: no jargon, no panic — just clear actions that improve cyber readiness.

Actions On

Immediate cyber response drills

Plain-English playbooks for the first few minutes of a cyber incident.

View all drills

First 10 minutes

Clicked a phishing link

Stop, preserve evidence, report, reset access and check for follow-up risk.

Account takeover

Email account hacked

Lock down the account, check forwarding rules and recover safely.

Payment fraud

Fake invoice received

A verification drill for finance, admin teams, trustees and owners.

Supplier risk

Supplier breach

What to ask, what to record and how to decide whether you are exposed.

Daily Int Brief

A daily cyber intelligence brief for organisations without a security team.

The Daily Int Brief will cover wider cyber issues such as scams, phishing trends, ransomware, government alerts, supplier risk and practical business actions.

Read the briefing format

Every issue will include:

Situation

What is happening and why it matters.

Action

What to check and what to do now.

Provider question

One question to ask your IT provider.

Vulnerability Brief

Plain-English vulnerability updates when something is worth acting on.

The Daily Vulnerability Brief translates actively exploited, widely reported or small-business-relevant vulnerabilities into simple action. It explains what is being reported, whether it could affect a small organisation, and what to ask your IT provider.

View Vulnerability Briefs

Each vulnerability brief includes:

Plain English

What the vulnerability means without technical jargon.

Impact

Whether a small business, charity or community group is likely to be affected.

Action

What to check, what to patch, and what to ask your IT provider.

Field Manual

Free templates, policies and checklists.

Practical starting points for organisations that need structure but cannot afford enterprise-level cyber documentation.

Open Field Manual

Incident Response Plan

A simple plan for who does what when something goes wrong.

AI Acceptable Use Policy

Clear rules for safe use of AI tools at work.

Supplier Questionnaire

Questions to ask suppliers before trusting them with systems or data.

Training

Cyber Basic Training

Ready-made cyber awareness training for small organisations.

View training

Consultancy

Readiness Review

A fixed-scope review covering email, MFA, backups, admin access, devices, suppliers and incident response.

View consultancy

Contact

Talk to Actions On Cyber

Email hello@actionsoncyber.com for training, readiness reviews or consultancy support.

Email now

Join the Actions On Cyber briefings.

Get plain-English cyber updates, practical actions and guidance you can share with your team.