This bulletin summarizes the information that was published in NIST Interagency Report (NISTIR) 7621, Small Business Information Security: The Fundamentals, by Richard Kissel. The publication presents three major areas that small businesses should address to provide security for their information, systems and networks: essential information security practices, highly recommended practices, and other planning considerations. The major recommendations for each of these three areas are summarized in the bulletin. The bulletin explains the need for small businesses to avoid the costs of not protecting their systems and information, and to take steps to protect the safety and security of their customers , their employees and their sensitive business information. Information is provided about how small businesses can get additional assistance on cyber-security issues.
This bulletin summarizes the information that was published in NIST Interagency Report (NISTIR) 7621, Small Business Information Security: The Fundamentals, by Richard Kissel. The publication presents three major areas that small businesses should address to provide security for their information,...
See full abstract
This bulletin summarizes the information that was published in NIST Interagency Report (NISTIR) 7621, Small Business Information Security: The Fundamentals, by Richard Kissel. The publication presents three major areas that small businesses should address to provide security for their information, systems and networks: essential information security practices, highly recommended practices, and other planning considerations. The major recommendations for each of these three areas are summarized in the bulletin. The bulletin explains the need for small businesses to avoid the costs of not protecting their systems and information, and to take steps to protect the safety and security of their customers , their employees and their sensitive business information. Information is provided about how small businesses can get additional assistance on cyber-security issues.
Hide full abstract
Keywords
employee training; firewalls; hackers; hostile attacks; information security; information system security; malicious code; media sanitization; passwords; small businesses; small enterprises; spyware; viruses