When developing and running a business there are a multitude of factors that have to be taken into consideration for it to be successful. Depending on the industry, the needs and the costs of a business change but recently there has been a growing need for cybersecurity awareness within these industries. Having proper cybersecurity policies and procedures in place can be a massive benefit and help prevent vulnerabilities from being exploited from both inside and outside threats. One such benefit as stated before is mitigation, there are various methods that can be used based on needs and the price willing to be paid. On the lower end software and hardware firewalls can be put in place to block malicious traffic and on the higher end there are full intrusion detection/prevention systems. An IPS will actively scan for threats as well as stopping the attack but having that type of system can be very expensive especially for large scale businesses. Aside from having technology in place for attacks there is a need for policies in place to outline what to do and how to do it. Training should be put in place to prevent employees from exposing themselves to risks such as phishing as well as teams dedicated to writing and updating policies. Having whole teams solely for this purpose and purchasing the resources for them to stay informed can seem less expensive initially but comes with consistently maintaining a budget for it. A successful combination of these two aspects create a safe environment for the company to do business as well as keeping customer information safe.