As a small business owner, you probably know (or at least realize) how many different threats facing your company.
Susan Friesen on the basis on The National Cyber Security Alliance provides us with the main steps how to secure your business online.
Identify what types of fraud or crime you may be most susceptible to. Do you work with medical information? Financial information?
Even if the purpose of your business is simply B2C there are steps to be taken to protect yourself.
Users who purchase through your website are trusting you to keep their financial information safe so take steps to do so such as having SSL installed for any e-commerce or sensitive information and it’s wise not to store it.
This can be as simple as making sure no spam messages are opened or any emails with attachments are scanned with some sort of antivirus software. While the software is not 100% effective it will stop the better circulated scams.
If you are the victim of a cyber attack you are going to get frustrated and with good cause.
Currently Canada is really vulnerable when it comes to cyber crime and your best hope is just to call the police. While promises have been made to address this, very little has been done and international criminals are impossible to go after.
If you are a victim of cyber crime contact local law enforcement and cross your fingers. But the bad news is you are likely to get no resolution. This is something to consider if you’ve been hiring anyone overseas.
In the US reporting cyber crime is much easier. You contact the FBI via this website. They have the capacity to address international criminals and recently America has cracked down on international crime operating within its borders.
For those reading from any other country I encourage you to do your own due diligence regarding protocol for reporting cyber crime so you’re prepared should you ever need to be.
Execute a Security Plan
For this the recommendation is to work with your ISP on a cyber security plan. While your ISP may be worth talking to you should really speak with your website’s hosting company first and foremost.
The security of your customer’s info and your business is delicate so make sure your host knows to have things such as routine backups of all information made and stored on another server.
Most of the majors stay on top of things but it’s always worth calling them for a quick review especially if you have pertinent info for them that may help.
If you have been a victim already let your host know what happened. The information may help others down the road.
Safeguard Your Clients
The suggestion found in this article of scanning all USB drives routinely is a good one. Sometimes the information can be air tight behind the most advanced firewall but it still gets out.
One of the easiest ways to exploit technology is social engineering. Many times the information isn’t so much stolen as leaked by someone internally.
Make sure all software is updated and that all computers connected to your network are running the most updated version of their operating system.
Educate Your Team
This is an easy one.
Have protocol in place that ensures your employees follow all steps noted above.
All computers must be scanned when attached to a network and all USB drives as well. Most people are accustomed to this now so don’t worry about implementing it suddenly.
By taking measures to protect yourself you’re ahead of the game should something occur. Scrambling after you’ve been a victim only helps the people who have stolen from you by giving them time to disappear.
Online business is only likely to grow even more and along with it fraud. The complexity of the scams will evolve and hopefully so do the solutions.
This post originally appeared on: www.business2community.com