Cyber threats are often mistakenly perceived as only being consequential to large corporations, but big businesses and those that are much smaller are all equally at risk. In fact, small businesses are considered to be more under threat than larger organisations, some of which is down to their size, but it’s more likely to be a lack of available resources for ensuring they’re adequately protected. Here are 10 things you can do about this scenario if you feel your small business falls into that category…
Raise awareness with employees
First things first. It’s vital to ensure that all of your employees are brought up to speed about cyber threats, what to look out for and how to take preventative measures. This might seem like an obvious first stop, but it’s surprising how any workers aren’t aware of company policies on cybersecurity. If educating employees about the threat from hackers hasn’t been top of your list, then it should be very soon.
Do a cybersecurity evaluation
Next up, spend some time carrying out an evaluation of your business and its current stance on cybersecurity. Now that most small businesses use a variety of software applications and many store data in the cloud, there are lots of potential areas of weakness. This is especially so if your business doesn’t already have an effective cybersecurity programme in place. Draw up a strategic plan to revisit this evaluation process as threats evolve.
Choose antivirus software
Every business needs to have a dependable antivirus package set up and running effectively to ensure ongoing protection. Be prepared to spend money on something as substantial as your business can afford. It might seem like unwanted expenditure, but if hackers gain access to your company and its data, via viruses, spyware or phishing attacks to name but three, the cost could be even heavier in the long run. Be sure to have an antivirus package that also stays up to date dynamically. That way your business will be able to combat the latest threats.
Keep software up to date
Small businesses that have dedicated IT departments have the benefit of staff who make sure the software and systems running within the company are kept up to date. However, if you’re a small business and don’t have such a thing as an IT department, it’s vital to ensure that someone stays on top of keeping software and systems relevant. Out of date software is very prone to infiltration from hackers and other cybercriminals, so spend time ensuring that you have the latest version of any program and that any security patches have been installed.
Carry out data backups
Prevention is always better than cure, but it’s also crucial to ensure that all of your small business data is backed up on a regular basis. Failure to keep backups of files and other information relating to your business activities could be disastrous if your company is unlucky enough to be the victim of a targeted attack by hackers. What’s more, any business that has been prudent enough to carry out regular data backups is less at risk from ransomware attacks.
Set up encryption
Spend time ensuring that your data is encrypted too, especially if your company is in the business of processing orders via credit cards, or there are everyday dealings with bank accounts. There are many different options open to businesses who want to make better use of encryption techniques. Usefully, there are many off-the-shelf software programs and systems that allow small business owners to handle encryption without the need for dedicated expertise or a specialised IT department.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Secure using WPA2
Another relatively simple process that can help prevent attacks is to ensure your business Wi-Fi network is secured using WPA2. This can be easily implemented and should help to prevent breaches from hackers. It’s also a good idea to limit access to any sensitive data that might be on your system. This is vital if you deal with a lot of people who might not be full-time employees, such as contractors or freelancers. Keeping on top of employees who have joined or who have left and changing any access privileges as a result is vital too.
Get a password manager
Everyone uses passwords, so it’s crucial as a small business to have a strategy in place that will best manage this part of the security puzzle. One of the best ways for a small business to keep tabs on passwords is to enlist the services of a quality and well-respected password manager. This dedicated software allows business owners to store and manage any and all passwords, while also keeping them safely locked down within the context of an encrypted storage space. They’re also very handy for ensuring that employees choose the best type of password and can also remind you when to change or update them.
Configure a firewall
Keeping your business safe behind a firewall is another must-do thing as part of a cybersecurity overhaul. A firewall will provide your business with an excellent way of blocking and fending off any viruses before they manage to get on to your company network. There will be a cost to finding, installing and maintaining an effective firewall, but along with the likes of antivirus software, the expense will be more than worth it if you’re protected from the advances of hackers and other cybercriminals.
Make use of a VPN
Once your business has a few core preventative tools in place, it’s also a good idea to spend time evaluating where else your business can benefit, such as using a Virtual Private Network or VPN. Workers should be encouraged to use a VPN, which helps to keep them from being exposed to security threats if they’re working remotely. Now that many employees are enjoying a hybrid working environment, giving them the benefit of using a secure VPN should mean that they can fend off attacks, both at home or if they’re travelling and need to use the internet in public areas such as airports or hotels.
Rob Clymo has been a tech journalist for more years than he can actually remember, having started out in the wacky world of print magazines before discovering the power of the internet. Since he's been all-digital he has run the Innovation channel during a few years at Microsoft as well as turning out regular news, reviews, features and other content for the likes of TechRadar, TechRadar Pro, Tom's Guide, Fit&Well, Gizmodo, Shortlist, Automotive Interiors World, Automotive Testing Technology International, Future of Transportation and Electric & Hybrid Vehicle Technology International. In the rare moments he's not working he's usually out and about on one of numerous e-bikes in his collection.