I can’t play golf.
Even when I played pitch and putt, I was beaten by everyone. A particular low was being beaten by my friend’s heavily-pregnant wife and their 7 year old daughter.
Do I feel ashamed?
Not particularly. Golf was never something I wanted to play.
Why am I telling you this?
Because when I start talking to you about your current security, I know it can be an uncomfortable conversation.
For some, it goes beyond discomfort. You feel shame.
You’re ashamed about “not doing more cyber” or “not having more security”, and you’re ashamed about having to “admit” this to me.
Don’t feel ashamed!
Unless you’re an accountant, you shouldn’t feel ashamed that you don’t know how to do your end-of-year accounts.
Unless you’re a solicitor, you shouldn’t feel ashamed that you don’t know how to draft a legal contract.
And unless cybersecurity was something you chose to get good at, you certainly shouldn’t feel ashamed that you don’t know what good cybersecurity looks like.
So, take it easy on yourself.
Find someone who can advise you, follow their advice, and then get back to what you’re good at.