Cybersecurity Resources for Small Businesses
The SBIR/STTR Cybersecurity Due Diligence program is aligned to the National Institute of Standards and Technology (NIST) and the Cybersecurity and Infrastructure Security Agency (CISA) Risk Management Framework. Both organizations offer valuable tools, guidelines and Cybersecurity (CS) best practices to assist small businesses to implement and maintain robust CS best practices. Below is a brief description of each publication, along with a link [to the publication]:
NIST and CISA Publications/Links:
- NIST has a useful publication that discusses the Fundamentals of Small Business Information Security: https://www.nist.gov/publications/fundamentals-small-business-information-security
- CISA has an excellent Cyber essentials guide aimed at small businesses: https://www.cisa.gov/resources-tools/resources/cyber-essentials
- CISA Services Overview
- NIST Framework for Improving Critical Infrastructure Cybersecurity
- NIST Small Business Information Security: The Fundamentals
- NIST Cybersecurity Framework Small Business Quick Start Guide
Additional Resources:
- The NM FBI Office of Counterintelligence offers a free, daily newsletter of cyber security breaches and trends
- The main Federal SBIR website, https://www.sbir.gov offers a lot of information and training
- The Federal Trade Commission has a good reference page dedicated to small businesses and CS https://www.ftc.gov/business-guidance/small-businesses/cybersecurity
- USAF SBIR CS page: https://www.safcn.af.mil/CISO/Small-Business-Cybersecurity-Information
Feedback
All submissions are anonymous. Your feedback is important to us and will be taken into consideration for possible future improvements. Thank you for taking the time to share your feedback.