Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Planning Guides

This section includes resources to help you create, evaluate, and improve your business’ overall security plan.

Our Planning Tools & Workbooks section includes guides, online tools, cyber insurance and workbooks to help you evaluate your business’ current approach to cybersecurity and plan for improvements.

The NIST Cybersecurity Framework section includes a widely used approach to help determine and address highest priority risks to your business, including standards, guidelines, and best practices. We have information about the Framework and understanding the Framework. 

Baldrige Cybersecurity InitiativeThe Baldrige Cybersecurity Excellence Builder is intended for use by leaders and managers—senior leaders, chief security officers, and chief information officers, among others—who are concerned with and responsible for mission-driven, ­cybersecurity-related policy and operations. 

The Cybersecurity Framework for Small Manufacturers includes information to help small manufacturers understand the NIST Cybersecurity Framework, a roadmap for reducing cybersecurity risk for manufacturers, and common cybersecurity practices for small and medium-sized manufacturers.

Content outlined on the Small Business Cybersecurity Corner webpages contains documents and resources from our contributors. These resources were identified by our contributors as information they deemed most relevant and timely—and were chosen based on the current needs of the small business community.  Certain commercial entities may be identified in this Web site or linked Web sites. Such identification is not intended to imply recommendation or endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.

Created February 7, 2019, Updated September 16, 2022