The internet and cloud computing are powerful tools for small businesses. They enable the small business to stay on competitive footing with larger firms when comes to expanding markets and increasing efficiency. However, along with all the benefits of the web comes the highly publicized danger and inherent risk. Every small business owner should have a comprehensive cybersecurity strategy to protect their business, customers and data. The following are a few areas small business owners.
1. Employee Awareness
Employers and owners need to establish fundamental security policy. All the technology in the world will not help if the human factor is not accounted for. This policy should include but, not limited to password policy and acceptable internet use guidelines. The policy should have teeth and establish penalties violations. Rules and procedures should be in place for handling sensitive and “personally identifiable information”
2. Minimize Your Attack Surface/Protect Your Technology
Get rid of unnecessary software and only keep what is required to perform business task and maintain your devices. Whatever is remaining should be kept updates with the latest patches and fixes. Having the latest security software, web browser and operating system are a defense against viruses, malware and online threats. It is a good practice to run full scans weekly and after updates.
3. Lock Down Physical Access to Computers
Use of should be restricted to business activities. Prevent access or use of to authorized personnel. Each employee should have a separate user account, requiring strong passwords. Administrative privileges should on be given to trusted technical support and key personnel. Mobile devices such as laptops, should be locked up when not in use and data on these devices should be encrypted as they are easy targets for theft