Cybersecurity Fundamentals for Small Business Owners

Published: November 19, 2009


Shirley M. Radack


This bulletin summarizes the information that was published in NIST Interagency Report (NISTIR) 7621, Small Business Information Security: The Fundamentals, by Richard Kissel. The publication presents three major areas that small businesses should address to provide security for their information, systems and networks: essential information security practices, highly recommended practices, and other planning considerations. The major recommendations for each of these three areas are summarized in the bulletin. The bulletin explains the need for small businesses to avoid the costs of not protecting their systems and information, and to take steps to protect the safety and security of their customers , their employees and their sensitive business information. Information is provided about how small businesses can get additional assistance on cyber-security issues.
Citation: ITL Bulletin -
NIST Pub Series: ITL Bulletin
Pub Type: NIST Pubs

Download Paper


employee training, firewalls, hackers, hostile attacks, information security, information system security, malicious code, media sanitization, passwords, small businesses, small enterprises, spyware, viruses
Created November 19, 2009, Updated February 19, 2017