Small and medium enterprises, SMEs, face particular difficulty in balancing their cybercrime prevention activities with the resources they have available. SMEs can not put profit at risk by implementing unnecessary and expensive ‘gold standard’ cyber crime control systems. Doing nothing is not an option. Instead we suggest a basic, pragmatic and practical approach. Firstly, it is important to understand what your valuable data is and to make sure that it is protected. Where new security issues are identified, implement new or improved procedures and controls to mitigate these problems.
Cyber crime prevention culture within your business is key. Train staff in how to spot cyber crime incidents and what to do if any are identified. Cyber crime prevention training should not be a one off activity and staff should be regularly updated in this area. All new staff should be made aware of any company cyber crime prevention policies and procedures.