Journal #7

Posted by jwill071 on

Running a business is an extremely hands-on process, even before considering security concerns. Developing a cybersecurity program, especially for small businesses, can be seen as an almost insurmountable task. However, developing such a program has incredible benefits to the business owner(s), the employees, third-party vendors the business may work with, and the clientele being served. While there are issues associated with developing such a program, the benefits far outweigh the associated costs.

To begin with, cybersecurity risks can be enough to completely shutter businesses. From phishing attempts to hacking to accidental misuse, cybersecurity threats can cause major headaches for businesses. With a well-developed cybersecurity program, these issues can be addressed head-on with preventative measures. Further, if a cybersecurity event does occur, there is protocol in place to address the problem, isolate it, and recover successfully. Strong cybersecurity programs protect the information and devices of the business and protect the customers using the service. By developing a cybersecurity program, you also strengthen your business by having an even stronger sense of what the business does and needs.

Great cybersecurity programs are not without issues, however. The biggest barrier to well-developed programs is the cost of developing one. Between owning the software required, having the hardware necessary to run it, and employing the staff to maintain it, cybersecurity programs can cost a lot for businesses. On top of all other costs to running a business, owners may feel they need to cut corners. This, however, is a risky practice and can lead to even greater costs down the road. Another issue is compliance from both users and employees. If employees are not on board with the cybersecurity program, the program could be rendered almost useless. For example, if protocol states that employees should change their passwords regularly and the employees fail to do so because they see it as a burden, this is a major cybersecurity risks.

All in all, there is no reason that businesses should not have some sort of cybersecurity program in place. To completely go without one is practically asking for your business to be unsuccessful. However, not all companies have the same needs. Additionally, the costs associated with developing such a program could be problematic, as well. Still, cybersecurity programs help protect the business, as well as the employees and clientele, by protecting the information and ensuring that business can go on as expected.

Paulsen C. & Toth P., (2016). Small Business Information Security: The Fundamentals. National Institute of Standards and Technology.

Leave a Reply

Your email address will not be published. Required fields are marked *