Small Businesses Need Cyber Security Training

Many small businesses don’t think about cyber security until after a cyber/hack attack and not having adequate cyber security can prove very expensive in terms of money, time and reputational damage and result in a loss of private data and information. 
 
For a long time, the average small business was considered an unlikely target for a sophisticated cyber-attack with fewer financial resources and a relatively unknown brand unlikely to attract the attention of hackers. Not anymore.
 
According to Accenture, 43%of cyber-attacks are aimed at small businesses, but only 14% are prepared to defend themselves. The frequency of attacks is also increasing, with more than half of all small businesses having suffered a breach within the last year and  small businesses really should pay attention to cyber security and take proactive steps and train your staff.   
 
The COVID-19 lockdown has forced millions of businesses to establish remote workforce that rely solely on Internet-enabled applications to conduct business in a virtual workplace has increased cybersecurity concerns for small business owners, although many have not implemented remote working policies to address cybersecurity threats, according to a survey by the Cyber Readiness Institute (CRI).
 
Economic Uncertainty 
Conducted from March 25-27, the survey of 412 small business owners found that half of all business owners are concerned that remote working will lead to more cyberattacks. Yet, nearly 40% feel that economic uncertainty will prevent them from making necessary cyber security investments. This is particularly concerning for companies with fewer than 20 employees as the survey showed they were distinctly unprepared for remote working. Only 22% provided additional cybersecurity training prior to enabling remote working and just 33% provided “any cybersecurity training.” 
 
Considering employee education lies at the core of the cybersecurity problem, more needs to be done and lessons they receive have to be from a reliable source.
 
 
Lack of Employee Training
Social distancing and quarantine orders have altered how business owners manage employees and interact with customers. It has made the reliance on secure communications and operations more important than ever.  Yet, only 46% of business owners provide any training to help workers be cyber secure when working from home. The numbers dwindled down to 33% when looking at companies with fewer than 20 employees.
 
Good cyber hygiene practices that focus on using secure passwords, ensuring that all operating systems are up to date, understanding tricks used by bad actors, and prohibiting the use of USB memory sticks can go a long way in preventing cyber-attacks.
 
Additional findings from the CRI Survey include:
  • Only 40% of small businesses have implemented a remote work policy focused on cyber security as a result of coronavirus (only 25% of those with less than 20 employees)
  • 59% of small business owners said that some employees would be using personal devices when working from home
  • 55% believe that federal and state governments should provide products and funding for cybersecurity
  • 51% said they provided their employees with technologies to improve cybersecurity for remote workers (only 34% for companies under 20 employees.
  • Small businesses can implement policies to ensure everyone in the company becomes part of the first line of defense against a cyber-attack and has on-going cyber security training. 
For more: cyber security training information, please contact Cyber Security Intelligence for advice and recommendations on employee training.
 
Microsoft:         Inc.:          CNBC:         SmallBizTrends:      Business Insider:       HelpNetSecurity:   
 
You Might Also Read:
 
Only 31% Of Employees Get Annual Cyber Security Training:
 
 
 
 
 
 
 
 
 
 
« Business Needs To Lock Down Cyber Security
How Coronavirus Helps Hackers Get Rich »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Qualys

Qualys

Qualys is a pioneer and leading provider of cloud security and compliance solutions.

Information Security Research Group - University of South Wales

Information Security Research Group - University of South Wales

The Information Security Research Group has an international reputation in the areas of network security, computer forensics and threat analysis.

SecureNow Insurance Broker

SecureNow Insurance Broker

SecureNow is a commercial insurance broker based in India. Services offered include Cyber Risk insurance.

Bulletproof Cyber

Bulletproof Cyber

Bulletproof offer a range of security services, from penetration testing and vulnerability assessments to 24/7 security monitoring, and consultancy.

CloudCheckr

CloudCheckr

CloudCheckr is a next-gen cloud management platform that unifies Security & Compliance, Inventory & Utilization and Cost Management.

SRI International

SRI International

SRI International is a research institute performing client-sponsored R&D in a broad range of study areas including computing and cybersecurity.

CSI

CSI

CSI is a Managed Service Provider (MSP) delivering Hybrid Multi-Cloud, Data Protection, and Cyber Security solutions to highly regulated industries.

Seltek Technology Solutions

Seltek Technology Solutions

Seltek provides Digital Forensics, eDiscovery, Cybersecurity Assessments and IT Support services.

CS3STHLM

CS3STHLM

CS3STHLM is the Stockholm international summit on Cyber Security in SCADA and Industrial Control Systems.

Startupbootcamp Fintech & Cybersecurity

Startupbootcamp Fintech & Cybersecurity

Startupbootcamp is the world’s largest network of multi-corporate backed accelerators helping startups scale internationally.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ReasonLabs

ReasonLabs

ReasonLabs have created a next-generation anti-virus that is enterprise grade, yet accessible to any personal device around the world.

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity's mission is to provide value by dramatically improving the cybersecurity posture of our clients and business partners.

Whitaker Brothers

Whitaker Brothers

Whitaker Brothers data destruction equipment can be found in 115 countries and every single continent in the world, from major military organizations to small offices.

Knostic

Knostic

Knostic is an early stage startup developing a risk management and governance platform designed for enterprise large language models (LLM).

EasySec Solutions

EasySec Solutions

EasySec Solutions provides a cyber-security platform, based on a combination of the zero trust model and the software-defined security management.