Top 8 Cyber Security Questions for Small Businesses

Hackers are targeting small businesses more than ever before, while 87% of business owners feel they are not at risk of attack.

According to a survey by Manta, only 69% of small business owners have security measures in place to prevent attacks, with the most common being antivirus software.

For small business owners, a cyber attack can be catastrophic to business, yet many attacks can be prevented. Simple security measures can be put in place at a much smaller cost up front, as opposed to overwhelming cost of responding to an attack that has already occurred.

According to the Securities and Exchange Commission, about 60 percent of small businesses that suffer a cybersecurity attack go out of business in six months (SEC, 2015).

To combat rising security threats, your business should be able to answer these 8 questions:

  1. Does each employee have a strong password?
    • A password helps maintain the confidentiality of data stored on servers and workstations.
    • Passwords should be difficult to guess and changed regularly.
  2. Does your company require two-factor authentication?
    • Two-factor authentication is commonly used in conjunction with a username and password as an added security measure.
    • Examples of two-factor authentication would be login information and a code or PIN; a fingerprint; or location.
  3. Are employees using personal devices for work purposes?
    • Risks of attack are increased when personal smartphones, tablets, or computers are used on a work network.
    • To prevent hacks and data breaches, consider giving employees work phones with a passcode requirement.
  4. Have you installed antivirus and malware detection software on every company device?
    • Having up to date antivirus and spyware detection software can help keep your network and servers safe from hacks.
    • Every device connected to the network should have the latest antivirus and malware detection software and should be checked before use.
  5. Does your business do security checks?
    • Security testing represents a new normal in business, as threats to networks are constantly changing and improving along with security measures.
    • Testing should be done regularly to ensure your data is secure and to check for possible threats in the network.
  6. How do you monitor your network?
    • If an attacker has already gained entry into your network, many of your security measures will not detect the threat.
    • Continuous monitoring will help identify suspicious activities in your network that can become a hack or breach that will cost you thousands to clean up.
  7. Is your team trained on what an attack looks like?
    • Educating the people using your network on a daily basis can help identify issues that may arise and move past security measures.
    • Attackers will try to use “client-side” attacks that attempt to circumvent your security measures by getting employees to open a harmful document or click on a link to a malicious website.
  8. How do you encrypt important information and databases?
    • The crucial information that keeps your business running is constantly under attack from hackers looking to steal your data.
    • Encryption of files and storage, email, and customer information will help your business avoid leaks that can lead to identity theft, exposure of sensitive documents and files, and theft of proprietary information.

If your company does not have a cybersecurity plan, or cannot answer any of the above 8 questions, Archetype SC can help. With expert security personnel on staff, we can provide a security consultation, testing, security services, and more to ensure your company is protected around the clock.

© Copyright 2019 Archetype SC, Inc.