How exposed is your warehouse to a cyber incident?

WMS access requires a named user account with multi-factor authentication

WMS data is backed up daily and a restore has been tested in the last 90 days

Label printers, voice-pick terminals and scanners run supported firmware

The WMS, ERP and finance systems run on segregated networks

Physical access to server rooms and IT cabinets is restricted and logged

Door access cards and badges are revoked the same day a worker leaves

CCTV systems sit on their own network with default credentials changed

Visitors and contractors sign in and are escorted in operational areas

Shared terminals and handhelds use individual logins, not a generic account

Handhelds and tablets are enrolled in mobile device management

Lost or stolen devices can be remotely wiped within an hour

USB sticks are blocked or restricted across operational machines

Contractors and agency staff have time-limited accounts that auto-expire

Third-party logistics partners use named portal accounts, not shared logins

Vendor remote access is approved per session, not always-on

Supplier security is reviewed at onboarding (Cyber Essentials or equivalent)

There is a documented manual pick and dispatch fallback if the WMS goes offline

Customer SLA contacts are documented for incident communications

A senior on-call rota covers cyber incidents out of hours

Cyber insurance is in place and the incident response number is on the wall