Small Businesses Need Cyber Security Training
Many small businesses don’t think about cyber security until after a cyber/hack attack and not having adequate cyber security can prove very expensive in terms of money, time and reputational damage and result in a loss of private data and information.
For a long time, the average small business was considered an unlikely target for a sophisticated cyber-attack with fewer financial resources and a relatively unknown brand unlikely to attract the attention of hackers. Not anymore.
According to Accenture, 43%of cyber-attacks are aimed at small businesses, but only 14% are prepared to defend themselves. The frequency of attacks is also increasing, with more than half of all small businesses having suffered a breach within the last year and small businesses really should pay attention to cyber security and take proactive steps and train your staff.
The COVID-19 lockdown has forced millions of businesses to establish remote workforce that rely solely on Internet-enabled applications to conduct business in a virtual workplace has increased cybersecurity concerns for small business owners, although many have not implemented remote working policies to address cybersecurity threats, according to a survey by the Cyber Readiness Institute (CRI).
Economic Uncertainty
Conducted from March 25-27, the survey of 412 small business owners found that half of all business owners are concerned that remote working will lead to more cyberattacks. Yet, nearly 40% feel that economic uncertainty will prevent them from making necessary cyber security investments. This is particularly concerning for companies with fewer than 20 employees as the survey showed they were distinctly unprepared for remote working. Only 22% provided additional cybersecurity training prior to enabling remote working and just 33% provided “any cybersecurity training.”
Considering employee education lies at the core of the cybersecurity problem, more needs to be done and lessons they receive have to be from a reliable source.
Lack of Employee Training
Social distancing and quarantine orders have altered how business owners manage employees and interact with customers. It has made the reliance on secure communications and operations more important than ever. Yet, only 46% of business owners provide any training to help workers be cyber secure when working from home. The numbers dwindled down to 33% when looking at companies with fewer than 20 employees.
Good cyber hygiene practices that focus on using secure passwords, ensuring that all operating systems are up to date, understanding tricks used by bad actors, and prohibiting the use of USB memory sticks can go a long way in preventing cyber-attacks.
Additional findings from the CRI Survey include:
- Only 40% of small businesses have implemented a remote work policy focused on cyber security as a result of coronavirus (only 25% of those with less than 20 employees)
- 59% of small business owners said that some employees would be using personal devices when working from home
- 55% believe that federal and state governments should provide products and funding for cybersecurity
- 51% said they provided their employees with technologies to improve cybersecurity for remote workers (only 34% for companies under 20 employees.
- Small businesses can implement policies to ensure everyone in the company becomes part of the first line of defense against a cyber-attack and has on-going cyber security training.
For more: cyber security training information, please contact Cyber Security Intelligence for advice and recommendations on employee training.
You Might Also Read: