Tax Dollars At Work: FTC and US-CERT Resources for SMBs

US-CERT sent an announcement on May 9th about new resources for small and medium size business owners and managers.  Protecting Small Businesses can be found on the FTC website.  It includes information about:

  • Protecting your business from scams
  • Cybersecurity
  • Data breach response
  • Protecting personal information

There are also helpful videos about:

  • Building security into software development
  • Controlling access to data
  • Defending against ransomware
  • Fraud
  • Data breach response.

There is also a section of actual FTC cases.  I would recommend taking a look at this site, as we have just covered the highlights that apply to cybersecurity.  There are other financial and general business resources as well.

Moving to US-CERT, they are offering Resources for Small and Midsize Businesses (SMB).  This features:

  • C3 Voluntary Program SMB Toolkit
  • Stop Think Connect Toolkit
  • SBA Training information
  • Federal Small Biz Cyber Planner
  • Small Business, Big Threat risk assessment tool
  • Internet Essentials for Business
  • and other resources

These resources are tax supported, and since you have paid for them, you ought to take advantage of them.  Creating a cybersecurity program can be a daunting project, but these sites should make it easier to get started.



About the Author:

Cybersecurity guru to business owners in the St Paul, Minneapolis, and western Wisconsin area. Computer security and hacking have been a passion of mine since I entered the computer and networking business in 2000. In 2013 I completed a course of study and certification exam to become a Certified Ethical Hacker (CEH). In 2016 I was certified as a Certified Information Systems Security Professional (CISSP). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of computer security, network security, and web site security. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also provide Cybersecurity Awareness Training for clients and their employees. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. The views expressed on this Web site are mine alone and do not necessarily represent the views of my employer.

Add a Comment