October is Cyber Security Awareness Month, and while we don't think that cyber awareness is something to cover just once in the year, we think it's a good opportunity to publish some information that can be used all year round.
Awareness Day Five: Responsibilities

"Wherever there is technology there needs to be cybersecurity"

Implementing cybersecurity best practices is important for organisations of all sizes to protect personal, financial and sensitive information.

Awareness Day Five: cyber security responsibilities don't just lie with IT, but with the whole organisation.  Organisations have a responsibility keep their customers data safe, yet at the same time, technology should be used to implement security measures, such as good password management and recognising phishing emails.

An organisation has a responsibility to ensure that everyone in the organisation is cyber aware and knows what to do in a cyber attack: Help after a Cyber Attack/Incident

Cyber strategy should be inline with the organisation's business strategies and come from Governance and Leadership: 
NCSC Cyber Security Toolkit for Boards
NCSC Questions for School Governors
NCSC 10 Steps to Cyber Security - infographic for the Board, explaining how cyber security is a priority.  Defining and communicating your Board's Information Risk Regime is central to your organisation's overall cyber security strategy.

Training and awareness is the best way to ensure everyone in an organisation understands your cyber strategy.  This should be continuous and not just once a year or when someone first starts in an organisation.