No Business Too Small

Recognizing the potential challenges faced by small businesses, the National Institute for Standards and Technology (NIST) has published a new guide titled “Small Business Information Security: The Fundamentals”, offering advice and basic steps that can be taken to protect their networks and related systems.

“Many small businesses think that cybersecurity is too expensive or difficult; Small Business Information Security is designed for them,” says Pat Toth, lead author on the guide. “In fact, they may have more to lose than a larger organization because cybersecurity events can be costly and threaten their survival.”

Based on the NIST’s “Framework for Improving Critical Infrastructure Cybersecurity”, the guide offers advice and instructions on such topics as:

  • Training employees about information security;
  • Data encryption;
  • Creating information security policies and procedures; and
  • Finding reputable cybersecurity contractors.