Posted on Tuesday, September 12, 2017 in Cyber RxBlog written by Rob Swenson
For most businesses, data breaches are likely, perhaps inevitable. Vulnerabilities in computer networks, cybercriminals’ advanced tactics and the increasing frequency of cyberattacks don’t bode well for the business community.
Nearly every new government or industrial rule complicates security compliance. And every new customer adds to a company’s burden to keep electronic information safe. Meanwhile, as businesses add connected devices and the volume of electronic data grows, hackers gain a steady supply of new targets.
Small and midsize businesses are particularly vulnerable to attacks. That’s because they often lack the resources to have a full, well-trained IT staff. Regardless, companies of all sizes must be proactive to have any chance of keeping up good cybersecurity protection.
Every business should assess the risks it faces and measure its ability to:
- Fight attacks.
- Prevent breaches.
- Recover from blows.
The NIST Cybersecurity Framework is a valuable resource any business can use to help assess risks. NIST is short for the National Institute of Standards and Technology, which is a non-regulatory agency within the U.S. Department of Commerce.
NIST worked with leaders and experts in business, academia and government to come up with a series of guidelines to help businesses of any size. The original version of the best-practice-like standards came out in 2014. Now a tool called CyberRx is available through Sioux Falls-based SDN Communications to help companies work through the Framework.
The CyberRx software was developed by a company that goes by the same name. CyberRx the business is part of e-Management Consultants, a Maryland company with 18 years of experience in the information technology business. CyberRx the product is an online analytical tool that helps organizations quantify and manage cybersecurity risks and improve their cybersecurity readiness.
SDN is a licensed reseller and has employees who are certified CyberRx coaches. A trained coach walks businesses through the software to identify cybersecurity weaknesses. The session lasts about three hours.
The assessment helps a company identify those holes, those gaps, those areas of vulnerability and then decide what to prioritize. After documenting the risk areas, company executives can assign management to address vulnerabilities.
A CyberRx report argues that every small business should take advantage of the NIST Cybersecurity Framework. It calls out five things every small and midsize business should know:
- The NIST Framework is actionable. It allows an organization to assess risks core areas.
- It leverages industry standards and best practices.
- It helps prioritize cyber-related investment decisions.
- It can help reduce legal risks.
- It is flexible enough to allow companies in different industries to use it.
Small and midsize businesses “should expect cyberattacks to increase as hackers and other cyber criminals expand from traditional modes of attack to the less expected channels, such as social media and mobile devices,” according to the CyberRx report.
By helping businesses become more knowledgeable about threats and vulnerabilities, the NIST Framework can help companies manage risks more effectively and confidently.
Promoting the NIST Framework and adding CyberRx to its business offerings are natural moves for SDN. In addition to being a premier regional provider of broadband connectivity for businesses, SDN is a leader in cybersecurity services.
For more information, visit the CyberRx webpage and fill out the form if you have questions.