Small Businesses Need Cyber Security Training

Many small businesses don’t think about cyber security until after a cyber/hack attack and not having adequate cyber security can prove very expensive in terms of money, time and reputational damage and result in a loss of private data and information. 
 
For a long time, the average small business was considered an unlikely target for a sophisticated cyber-attack with fewer financial resources and a relatively unknown brand unlikely to attract the attention of hackers. Not anymore.
 
According to Accenture, 43%of cyber-attacks are aimed at small businesses, but only 14% are prepared to defend themselves. The frequency of attacks is also increasing, with more than half of all small businesses having suffered a breach within the last year and  small businesses really should pay attention to cyber security and take proactive steps and train your staff.   
 
The COVID-19 lockdown has forced millions of businesses to establish remote workforce that rely solely on Internet-enabled applications to conduct business in a virtual workplace has increased cybersecurity concerns for small business owners, although many have not implemented remote working policies to address cybersecurity threats, according to a survey by the Cyber Readiness Institute (CRI).
 
Economic Uncertainty 
Conducted from March 25-27, the survey of 412 small business owners found that half of all business owners are concerned that remote working will lead to more cyberattacks. Yet, nearly 40% feel that economic uncertainty will prevent them from making necessary cyber security investments. This is particularly concerning for companies with fewer than 20 employees as the survey showed they were distinctly unprepared for remote working. Only 22% provided additional cybersecurity training prior to enabling remote working and just 33% provided “any cybersecurity training.” 
 
Considering employee education lies at the core of the cybersecurity problem, more needs to be done and lessons they receive have to be from a reliable source.
 
 
Lack of Employee Training
Social distancing and quarantine orders have altered how business owners manage employees and interact with customers. It has made the reliance on secure communications and operations more important than ever.  Yet, only 46% of business owners provide any training to help workers be cyber secure when working from home. The numbers dwindled down to 33% when looking at companies with fewer than 20 employees.
 
Good cyber hygiene practices that focus on using secure passwords, ensuring that all operating systems are up to date, understanding tricks used by bad actors, and prohibiting the use of USB memory sticks can go a long way in preventing cyber-attacks.
 
Additional findings from the CRI Survey include:
  • Only 40% of small businesses have implemented a remote work policy focused on cyber security as a result of coronavirus (only 25% of those with less than 20 employees)
  • 59% of small business owners said that some employees would be using personal devices when working from home
  • 55% believe that federal and state governments should provide products and funding for cybersecurity
  • 51% said they provided their employees with technologies to improve cybersecurity for remote workers (only 34% for companies under 20 employees.
  • Small businesses can implement policies to ensure everyone in the company becomes part of the first line of defense against a cyber-attack and has on-going cyber security training. 
For more: cyber security training information, please contact Cyber Security Intelligence for advice and recommendations on employee training.
 
Microsoft:         Inc.:          CNBC:         SmallBizTrends:      Business Insider:       HelpNetSecurity:   
 
You Might Also Read:
 
Only 31% Of Employees Get Annual Cyber Security Training:
 
 
 
 
 
 
 
 
 
 
« Business Needs To Lock Down Cyber Security
How Coronavirus Helps Hackers Get Rich »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ANS Group

ANS Group

ANS are a strong team of straight-talking tech and business experts. Our mission is to make digital transformation accessible to all.

Resilient Information Systems Security (RISS)

Resilient Information Systems Security (RISS)

RISS is a research group is in the Department of Computing at Imperial College London.

Risk Ident

Risk Ident

RISK IDENT specializes in supporting enterprises in identifying and preventing criminal activity like payment fraud, account takeovers and identity theft.

Kymatio

Kymatio

Kymatio are pioneers in Artificial Intelligence applied to adaptive staff strengthening, cultural change and predictive internal risk analysis.

SPARTA Consortium

SPARTA Consortium

SPARTA tackles hard innovation challenges, leading the way in building transformative capabilities and forming a world-leading cybersecurity competence network across the EU.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Crypto Valley Association

Crypto Valley Association

Crypto Valley Association is an independent, government-supported association established to build the world’s leading blockchain and cryptographic technologies ecosystem.

Key Cyber Solutions

Key Cyber Solutions

Key Cyber is an IT consulting firm that specializes in agile software development services, program management and infrastructure services, cyber security and cloud and managed services.

SIXGEN

SIXGEN

SIXGEN provides incident response, operational and penetration testing, red teaming, tool development, cyber training development and continuous monitoring.

UK Cyber Security Association (UKCSA)

UK Cyber Security Association (UKCSA)

The UK Cyber Security Association (UKCSA) is a membership organisation for individuals and organisations who actively work in the cyber security industry.

Delinea

Delinea

Delinea is a leading provider of cloud-ready privileged access management (PAM) solutions that empower cybersecurity for the modern, hybrid enterprise.

Softwerx

Softwerx

Softwerx is the UK’s leading Microsoft cloud security practice. We’ve been helping forward-thinking companies better secure their businesses for nearly twenty years.

rSolutions

rSolutions

rSolutions delivers managed cybersecurity services to clients in many industry sectors including financial services, telecommunications, energy, government and retail.

Sterling Information Technologies

Sterling Information Technologies

Sterling is an information security, operational risk consulting and advisory group. Our Advisory services help to safeguard information assets while supporting business operations.

Mercury Systems

Mercury Systems

Mercury Systems is the leader in making trusted, secure mission-critical technologies profoundly more accessible to aerospace and defense.

ACDS (Advanced Cyber Defence Systems)

ACDS (Advanced Cyber Defence Systems)

ACDS was founded in the belief that cyber security can be done better. We’re combining emerging technologies and proven methods to bring a new approach to tackling the growing threat landscape.