Expert explains how businesses can transform cyber-security in five strategic steps
Read More
Why Entrepreneurs Need To Take Cyber-Security More Seriously
14th November 2025
One of the region’s leading experts on cyber-security has warned businesses are still leaving themselves “wide open” to attacks.
Cyber security expert Roy Shelton, technology expert and CEO of managed services provider Connectus Business Solutions says he is taken aback by business owners who think cyber-security is a low priority for them.
Mr Shelton said: “I am shocked at the slow take up of proven counter measures around cyber-security and improving the security postures of SMEs.” The biggest push back I hear is:
- It won’t happen to me, we only make widgets
- We are too small
- We will take the risk
- We can’t afford it
“I get it: when budgets are tight and the economy uncertain, SMEs have enough to worry about. However, they fail to realise that a cyber-attack could destroy their business overnight.”
Mr Shelton warned the loss of earnings and profits, the cost of paying a ransom, remediation, brand damage, and the potential litigation can be crippling.
He points out that hackers no longer focus only on large corporations.
He said: “Small and medium-sized businesses are seen as easy targets, often with valuable data, limited protection or technical knowledge and weaker systems.
“Over 40% of cyber attacks now target SMEs. The average cost of a cyber breach for a UK SME is now over £20,000 and many never fully recover. Entrepreneurs must see cyber resilience as financial risk management, not just IT hygiene.
“Customers, suppliers, and investors expect their data to be protected. A single cyber lapse can destroy hard-earned trust overnight.
“Demonstrating good cyber hygiene, like Cyber Essentials, or even better Cyber Essentials Plus certification, shows that your business takes responsibility and professionalism seriously.
“With GDPR, data protection laws, and sector-specific regulations, entrepreneurs have a legal duty to safeguard data. Failing to do so can lead to investigations, fines, and reputational harm that small firms can’t easily absorb.
“Businesses that can prove their security maturity win more contracts, especially in B2B and public sector supply chains. Being secure isn’t just defensive; it’s a sales enabler, helping entrepreneurs build partnerships and scale with confidence.
“Entrepreneurs must treat cyber-security as a strategic investment, not a technical afterthought. It protects your reputation, customers, cash flow, and future growth – the very foundations of your business.”
For more information see www.connectus.org.uk
