Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cybersecurity Fundamentals for Small Business Owners



Shirley M. Radack


This bulletin summarizes the information that was published in NIST Interagency Report (NISTIR) 7621, Small Business Information Security: The Fundamentals, by Richard Kissel. The publication presents three major areas that small businesses should address to provide security for their information, systems and networks: essential information security practices, highly recommended practices, and other planning considerations. The major recommendations for each of these three areas are summarized in the bulletin. The bulletin explains the need for small businesses to avoid the costs of not protecting their systems and information, and to take steps to protect the safety and security of their customers , their employees and their sensitive business information. Information is provided about how small businesses can get additional assistance on cyber-security issues.
ITL Bulletin -


employee training, firewalls, hackers, hostile attacks, information security, information system security, malicious code, media sanitization, passwords, small businesses, small enterprises, spyware, viruses


Radack, S. (2009), Cybersecurity Fundamentals for Small Business Owners, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed April 23, 2024)
Created November 19, 2009, Updated February 19, 2017