15 steps to reducing security risks in business mobility
The key steps you need to take in order to minimise the potential for security breaches and loss...
Sony Pictures, TalkTalk, Target, Adobe. Some of the biggest companies in the world; modern, relevant and successful. And yet, all have been subjected to high-profile data breaches. We tackle the issue in the first of our Securing your business series.
You may think companies like these are easy targets because of their sheer size and reputation. And you’d be right. But there’s no doubt that digital attackers are becoming far less discerning. The Information Security Breaches Survey 2015 found that 74 per cent of small to medium-sized enterprises (SMEs) reported a data security compromise in the previous year.
The report also found that the average cost to SMEs of the worst security breaches was anything from £75,000 (€89,477) to £310,800 (€370,784), and that 30 per cent of SMEs suffered breaches caused by their own staff.
The advent of cloud computing and remote working, coupled with increasingly sophisticated hacking techniques and malware, has meant that no target is too small. An online order placed with your store for just a few pounds may seem insignificant, but to a determined hacker it could be the backdoor to information you share with much larger clients.
There are other reasons why SMEs are becoming more vulnerable to information theft. Attackers realise that security is often pushed to the bottom of the to-do list amid the day-to-day stresses of running a small business. They know that you and your staff may work remotely, over unsecured public Wi-Fi networks. And they’ve figured out that as your business grows, so the data you store increases – and that, with no dedicated legal team, you may be neglecting some of the safeguards that go with that storage.
Attacks, breaches and exploits can take many forms. Knowing what to look for should be the first step to shoring up your digital security.
Yet despite businesses of all sizes being caught in the crosshairs, it’s easier for SMEs to fortify themselves. “A big company is more vulnerable than a small company: they have big data pools and hundreds of people have to have access,” said Richard Horne, a partner at PricewaterhouseCoopers, in a roundtable with The Guardian.
“If you are at the smaller end of the scale, being smart about business processes and understanding where those business processes might be exploited is easier than for a large organisation.”
Next month, and as part of the Securing your business series, Think Progress will be examining whether the password is still the best way to secure sensitive information.