NFIB

Commonsense Guide to Cyber Security for Small Businesses
04/ 27/ 2004

Do you think your business is too small to worry about cyber security? Many small and medium-sized businesses are under the mistaken impression that their size, or the minimal security steps they have already taken, will protect them from cyber attacks. This assumption is both inaccurate and dangerous.

Compiled by the Internet Security Alliance, this "Commonsense Guide to Cyber Security for Small Businesses" outlines recommended actions to ensure information security. It is important to understand that neither the size of your company nor the type of your business guarantees protection from an attack. If you use the Internet, you are vulnerable. But if you follow the recommended best practices contained here, you will be substantially less vulnerable. (Adobe Acrobat Reader required for the links on this page.)

Best Practices -- A 12 Step Program to Cyber Security

Introduction

Practice 1
Use Strong Passwords and Change Them Regularly

Practice 2
Look Out for E-mail Attachments and Internet Download Modules

Practice 3
Install, Maintain and Apply Anti-Virus Programs

Practice 4
Install and Use a Firewall

Practice 5
Remove Unused Software and User Accounts; Clean Out Everything on Replaced Equipment

Practice 6
Establish Physical Access and Acceptable Use Controls for all Computer Equipment

Practice 7
Create Backups for Important Files, Folders and Software

Practice 8
Keep Current With Software Updates

Practice 9
Implement Network Security With Access Control

Practice 10
Limit Access to Sensitive and Confidential Data

Practice 11
Establish and Follow a Security Financial Risk Management Plan; Maintain Adequate Insurance Coverage

Practice 12
Get Technical Expertise and Outside Help When You Need It

References and Sources

View the entire "Commonsense Guide to Cyber Security for Small Businesses" as one document.

Small Business Sound Off
Does this story hit home?  Share your story with us