Digital information theft has surpassed physical theft as the most commonly reported fraud. Businesses, regardless of their size, must have a cyber security plan in place to protect their own operations, their customers and their data from the growing cyber security threats.

Cyber Security Tips should be part of the plan whether a firm is considering cloud computing or simply using email and maintaining a website. Here are 10 tips on securing your small business.

1. Educate staff on Cyber Security Tips.

Develop critical employee security practices and regulations. For example, mandating secure passwords and establishing acceptable Internet use guidelines that specify penalties for violating the company’s cyber security policy. In addition, establish ground rules for handling and protecting client information and other essential data.

2. Protect computers, information, and network from cyber-attacks.

Maintain clean machines: The latest security software, web browsers and operating systems are the strongest protection against viruses, malware and other online dangers. Configure your antivirus program to scan after every update. Install all critical software updates as soon as they become available.

3. Set up a firewall to protect your Internet connection.

A firewall is a set of connected applications that prevent unauthorized users from accessing data on a private network. Check if the operating system firewall is activated or install free firewall software available online. If employees work from home, ensure their home system(s) are protected by a firewall.

4. Create a mobile device action plan. | Cyber Security Tips

Mobile devices can pose significant management and security challenges, especially when they contain sensitive information or have access to the corporate network. Require users to password-protect their devices, install security software, and encrypt their data to prevent hackers from obtaining information when their phone is connected to public networks. In addition, establish reporting procedures for lost or stolen devices.

5. Secure company data and information by creating backup copies.

Back up data on all computers regularly. Examples of critical data are word processing documents, electronic spreadsheets, databases, financial files, human resources files, and accounts receivable/payable files. Back up data automatically, or at least regularly, and store copies elsewhere or in the cloud.

6. Maintain physical access to your computers and create separate user accounts for each employee. | Cyber Security Tips

Prevent unauthorized persons from accessing or using company computers. Laptops are especially vulnerable to theft or loss, so keep them locked when not in use. Ensure that each employee has a separate user account and that secure passwords are required. Administrative rights should only be granted to trustworthy IT employees and essential personnel.

7. Protect your wireless networks

If your organization has a Wi-Fi network, ensure it’s secure, encrypted, and hidden. To hide your Wi-Fi network, set your wireless access point or router to not broadcast the network name, also known as Service Set Identifier (SSID). Password-protect router access.

8. Use card payment best practices. | Cyber Security Tips

Work with processors or banks to ensure the most trusted and proven anti-fraud technologies and services are used. You may also have additional security duties under agreements with your bank or processor. Isolate payment systems from other, less secure applications. Avoid utilizing the same computer to process payments and access the Internet.

9. Limit employee access to data and information and their ability to install software.

Do not allow employees access to all data systems. Employees should only be granted access to the data systems required for their tasks. They should not be allowed to install software without authorization.

10. Require passwords and multi-factor authentication

Require workers to use unique passwords and update them every three months. Consider installing multi-factor authentication, which needs more information than a password to obtain access. Check with your vendors who handle sensitive data, particularly banking institutions, if they provide multi-factor authentication for your account.

Resources & Sources

Visit the sites cited in this article to learn more about cyber security for small businesses.

• Government of Canada Get Cyber Safe – Guide for Small and Medium Businesses
• Canadian Internet Registration Authority (CIRA) – Cybersecurity Awareness Training
• Federal Communications Commission (FCC) – Cybersecurity for Small Business
• Information Security Buzz – 10 Important Cyber Security Tips For Small Business Owners
• CompuData – 8 Cyber Security Tips for Your Small Business
• Trend Micro – Small Business: A Target for Cyber Criminals
• Le VPN – 7 Reasons Why Cyber Security Threats Target Small Businesses
• NetworkComputing – 5 Basic Network Security Tips for Small Businesses