Security doesn’t have to be expensive to be effective.

By: Chase Palmer
Sometimes security can be an overwhelming (and expensive) burden for small businesses to bear. According to Spiceworks, the average annual IT budget for small and medium businesses is $192,000. How much of that is allotted to security? I would estimate less than 10%.

But if 10% is all you have to spend, let’s make it work to your advantage.


Understanding hackers

Malicious hackers exist for one purpose. Stealing valuable data to make a profit on the black market. While there is no such thing as hack-proof, understand that data thieves and cybercriminals are notoriously lazy. They look for easy paths to compromise, and are often dissuaded by simple security roadblocks.

Let’s set up some roadblocks.

Watch this Slideshare to learn some budget-friendly tips, products, and tools that can dramatically limit your organization’s exposure to hackers.



So, to recap, here are my 10 tips for effective, reasonable security

  1. Conduct regular vulnerability scansto locate external network vulnerabilities before criminals do.
  2. Update anti-virus software, regularly. This software helps find the latest malware/virus versions that may compromise your system.
  3. Update software and hardware, regularly. Even updating your browser can have an effect on your overall business security.
  4. Change passwords. If you have a hard time remembering your password, think of a memorable phrase, then take the first letter from each word to create your password. Here’s an example. “My dog Kibbles has 16 teeth & loves steak” becomes “MdKh16t&ls.”
  5. Install a strong firewall, and make sure the firewall rules limit incoming and outgoing traffic.
  6. Scan mobile devices for threats. Check out MobileScan to verify mobile device security in seconds.
  7. Encrypt portable data. That’s right, I’m talking about all USB drives, hard drives, and CDs.
  8. Start training employees. After all, your business is only as secure as its weakest link.
  9. Discover your unencrypted card data. Get a free trial of PANscan and find that dangerous stored card data before criminals do.
  10. Get breach protection and avoid unforeseen expenses in case your business is compromised.
Did this post help you? If so, please share!

Chase Palmer is the Senior Program Manager and has been working at SecurityMetrics for seven years. He manages the company’s largest corporate partners in running mass Level 4 PCI DSS programs worldwide. Chase has a Bachelor’s degree in Business Management from Western Governor’s University. He currently lives in Provo, Utah, and he loves everything about motorcycles.