Monday, December 5 , 2016, 3:13 am | Fair 42º


Tom Donohue: Small Businesses Can Beat Cybercrime

Many cybersecurity experts say that there are two types of businesses today — those that have been hacked and know it, and those that have been hacked and don’t know it. As large businesses strengthen their cyber protections, small and medium ones are increasingly the targets of online criminals.

When small and midsize businesses realize that they may be vulnerable to attack, many automatically conclude that they don’t have the resources to adequately protect their networks and data. But there are, in fact, a number of innovative, cost-effective actions that all businesses can take to assess and improve their cybersecurity over time.

The U.S. Chamber of Commerce worked closely with industry partners and the National Institute of Standards and Technology to come up with a framework of existing standards and best practices to help companies start a cybersecurity program or improve an existing one. By adopting the practices outlined in the Framework for Improving Critical Infrastructure Cybersecurity, all businesses can reduce network and system weaknesses and take steps to deter cyberattacks.

For starters, businesses can improve their cyber risk management by understanding common online threats that often lead to cybercrime, such as malicious software (also known as  malware), computer viruses, spam and phishing schemes. The framework and similar risk-management tools, such as the chamber’s Internet Security Essentials for Business 2.0 guidebook, explain the risks and provide tips for preventing or detecting them.

Cyber experts generally agree that businesses can stop the vast majority of unsophisticated or untargeted malicious activity by implementing the elements of the framework. But companies must be realistic about their risks and continually improve their security efforts.

Small businesses can’t assume that they’ll fly under the radar. And large businesses can’t assume that they’ll be safe by only adopting robust cybersecurity practices at the corporate level.

Precautions must be taken at every step in the supply chain, which is often where criminals find points of vulnerability. So corporations that contract or work with small businesses should help inform their partners of threats and urge them to adopt forward-leaning cyber practices.

To get the word out, the Chamber of Commerce has launched a nationwide campaign to make businesses aware of cybercrime and explain the framework for enhanced Internet security. Learn more about the chamber’s efforts to equip businesses with cybersecurity tools and pursue meaningful policy solutions at

— Tom Donohue is president and CEO of the U.S. Chamber of Commerce. The opinions expressed are his own.

Reader Comments

Noozhawk's intent is not to limit the discussion of our stories but to elevate it. Comments should be relevant and must be free of profanity and abusive language and attacks.

By posting on Noozhawk, you:

» Agree to be respectful. Noozhawk encourages intelligent and impassioned discussion and debate, but now has a zero-tolerance policy for those who cannot express their opinions in a civil manner.

» Agree not to use Noozhawk’s forums for personal attacks. This includes any sort of personal attack — including, but not limited to, the people in our stories, the journalists who create these stories, fellow readers who comment on our stories, or anyone else in our community.

» Agree not to post on Noozhawk any comments that can be construed as libelous, defamatory, obscene, profane, vulgar, harmful, threatening, tortious, harassing, abusive, hateful, sexist, racially or ethnically objectionable, or that are invasive of another’s privacy.

» Agree not to post in a manner than emulates, purports or pretends to be someone else. Under no circumstances are readers posting to Noozhawk to knowingly use the name or identity of another person, whether that is another reader on this site, a public figure, celebrity, elected official or fictitious character. This also means readers will not knowingly give out any personal information of other members of these forums.

» Agree not to solicit others. You agree you will not use Noozhawk’s forums to solicit and/or advertise for personal blogs and websites, without Noozhawk’s express written approval.

Noozhawk’s management and editors, in our sole discretion, retain the right to remove individual posts or to revoke the access privileges of anyone who we believe has violated any of these terms or any other term of this agreement; however, we are under no obligation to do so.

Support Noozhawk Today

You are an important ally in our mission to deliver clear, objective, high-quality professional news reporting for Santa Barbara, Goleta and the rest of Santa Barbara County. Join the Hawks Club today to help keep Noozhawk soaring.

We offer four membership levels: $5 a month, $10 a month, $25 a month or $1 a week. Payments can be made through PayPal below, or click here for information on recurring credit-card payments.

Thank you for your vital support.

Daily Noozhawk

Subscribe to Noozhawk's A.M. Report, our free e-Bulletin sent out every day at 4:15 a.m. with Noozhawk's top stories, hand-picked by the editors.

Sign Up Now >