Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.


The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Planning Guides

This section includes resources to help you create, evaluate, and improve your business’ overall security plan.

Planning Tools & Workbooks

Guides, online tools, and workbooks to help you evaluate your business’ current approach to cybersecurity and plan for improvements

Cybersecurity Resources Roadmap - helps small and midsize businesses select the most useful cybersecurity resources based on needs
Department of Homeland Security

Cyber Insurance – tips on choosing a cyber insurance policy
Federal Trade Commission

FCC Cyber Planner - The Small Biz Cyber Planner 2.0 is an online resource to help small businesses create customized cybersecurity plans.
Federal Communications Commission

NIST Cybersecurity Framework

Widely used approach to help determine and address highest priority risks to your business, including standards, guidelines, and best practices

NIST Cybersecurity Framework – links to the framework itself and other resources to help you apply it to your business
National Institute of Standards and Technology

Understanding the NIST Cybersecurity Framework – overview of the framework and how to put it to work in your business
Federal Trade Commission

Cybersecurity Risk Management - The FCC's Communications Security, Reliability and Interoperability Council's report on cybersecurity risk management and best practices.
Federal Communications Commission

Cybersecurity Framework for Small Manufacturers

Cybersecurity Framework Steps for Small Manufacturers - helps small manufacturers understand the NIST Cybersecurity Framework and how it can be used to manage their cyber risks. 
Manufacturing Extension Partnership

NIST Manufacturing Profile – NISTIR 8183 - provides the Cybersecurity Framework (CSF) implementation details developed for the manufacturing environment including a roadmap for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals and industry best practices
National Institute of Standards and Technology

Manufacturers Guide to Cybersecurity for Small and Medium-Sized Manufacturers - Outlines common cybersecurity practices for small and medium-sized manufactures.  The activities are grouped according to the 5 Functions of the Cybersecurity Framework
Manufacturing Extension Partnership

Content outlined on the Small Business Cybersecurity Corner webpages contain documents and resources submitted directly to us from our contributors. These resources were identified by our contributors as information they deemed most relevant and timely—and were chosen based on the current needs of the small business community.  Certain commercial entities may be identified in this Web site or linked Web sites. Such identification is not intended to imply recommendation or endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.

Created February 7, 2019, Updated January 27, 2020