Update

South-West Texas Border SBDC's are Open for Business ** Details

Pre Header

Header

Cybersecurity for Small Business

This program is designed to provide awareness through training, one-on-one assistance with cybersecurity action plan development and implementation working with other UTSA speciality centers on cybersecurity.

Information protection and security is vital to the sustainability and success of small business and the national economy.  As advocates and resource partners for the business community and service providers for the federal government, it is our role to educate and assist with federal contracting compliance guidelines and information security awareness.  More than two thirds of all small businesses report that are dependent on the internet for day-to-day activities.  Yet, according to the National Cybersecurity Alliance, most small businesses don’t do enough to protect themselves online.  Twenty percent of small businesses don’t have or use anti-virus software.  Sixty percent don’t use any encryption on their wireless networks, and fewer than 30% have a security plan in place. 

TOOLS AND RESOURCES FOR SMALL BUSINESS OWNERS

Secure Small Business Wi-Fi

Today’s businesses no longer need to connect to the internet via cables that limit their mobility. People use wireless internet connections to communicate, work, and save money on cell phone data. In addition, customers expect free Wi-Fi access in-store and in waiting areas. Although Wi-Fi is almost a necessity for today’s businesses, Wi-Fi can also be dangerous to you, your business, and your customers. In this presentation, we’ll discuss the 10 tips to make (or keep) your business Wi-Fi network secure and what may happen if you don’t.

Cyber Threats in 2021

How secure is your virtual workspace?  Ransomware and phishing are well-known threats and vulnerabilities. While they remain major threats for small businesses in 2021, this webinar reveals other, lesser known, threats and vulnerabilities. Join us as we cover everything from account “takeovers” to zero-day exploits! Learn how small businesses can protect themselves against these top emerging threats in 2021.

Company suffers cyberattack, finds solutions to get back to business

Cyberattacks are on the rise and this video is proof of how a business can be targeted. Criminals are not only after your business’ sensitive information, but they are looking for ways to harm your entire network. Protect your small business. Our cybersecurity advisors are ready to assist. Contact us for more information or for assistance in protecting your business.

Courtesy: NIST MEP

CMMC Roundtable - 27 January 2021

The Department of Defense Cybersecurity Maturity Model Certification (CMMC) continues to be rolled out in a systematic process. The initial contracts to have CMMC written into them have been identified and assessments will start soon. We are lucky to have John Hill from TechSage Solutions as a CMMC Registered Practitioner and Denise Davis from Vet Global Solutions (VetGS) as a Provisional Assessor join us to answer your questions. We will focus on what your business should be doing to prepare for the assessment and explaining the CMMC assessment process.

DFARS Self-Assessment : What You Need To Know

In September 2020, the DoD released its long-anticipated DFARS Interim Rule, which went into effect November 30, 2020. The Interim Rule’s main objectives are to solidify that the Cybersecurity Maturity Model Certification (CMMC) will be the new framework for DoD contracts and to instruct contractors that they must perform and report a self-assessment score based on NIST 800-171. With these dual mandates, the Interim Rule looks to address defense companies’ security and compliance gaps, and provide an onramp for the rollout of CMMC. View the recorded presentation or download the PDF slides using the buttons below.

CMMC Roundtable Discussion

On Tuesday, July 14th 2020, the UTSA SBDC CGC held a virtual roundtable discussion about the Cybersecurity Maturity Model Certification (CMMC), especially as it relates to small businesses. The panel consisted of three subject matter experts in the fields of CMMC, Controlled Unclassified Information, and a small business cybersecurity expert. The discussion was centered around questions from the participants that were asked through the chat feature and answers from the panel. You can download the MP4 of the WebEx session using the button below.

Cyber Aware Series

Each month, the UTSA SBDC CGC staff will present a cybersecurity training over a specific topic. These presentations will be made available on-demand after the initial offering. If you want to download any of them, you have the option to download a video of the presentation or a PDF file of the slides that includes the slide notes. If you would like to see a particular topic covered that has not been covered, please let us know.

Passwords and Password Management August 2020

The UTSA SBDC COVID Business Recovery Accelerator continues to examine cybersecurity topics that impact small businesses with our monthly Cyber Aware series. This month we will be discussing passwords and password management. Passwords are a part of our daily professional and personal lives. They help your accounts stay private and secure but, if you’re guilty of reusing, rotating, or using notoriously easy passwords, you are leaving yourself and your business open to an account breach. This month, we will be discussing the importance of passwords, password complexity, and the often controversial use of password managers.

Ransomware June 2020

The SBDC CGC continues to examine cybersecurity topics that impact small businesses with our monthly Cyber Aware series. This month we will be discussing ransomware. Ransomware continues to be a major threat to businesses of all sizes around the world.  Ransomware attacks against businesses are increasing, while attacks against individuals are decreasing. We’ll cover what ransomware is, recent trends, cyber insurance, and the importance of back-ups and recovery plans. We hope you can join us as we discuss the ransomware threat to small businesses.

Phishing May 2020

The SBDC CGC continues to examine cybersecurity topics that impact small businesses with our monthly Cyber Aware series. This month, we will be discussing phishing. Phishing attacks continue to be one of the biggest threats facing businesses today. Threat actors can use phishing to gain access to, modify, or even hold your data for ransom. Technology has advanced with email security software, however, education and awareness training is still the best defense to combat a phishing attack. Join us as we discuss the different methods of phishing, detecting a phishing attack, and recovery from a phishing attack.

**COVID-19 and Cybersecurity for your business**

The UTSA SBDC CGC team had the opportunity to create and present on COVID-19 cybersecurity concerns.  “COVID-19, Cybersecurity and Your Business” is now available for anyone to download and/or view. You will find a recording of the presentation and a copy of the slides (in PDF format with instructor notes) below.

Want to know what you can do today to decrease your risk from cybersecurity threats? Click Here

 

Department of Homeland Security
The Department of Homeland Security (DHS) and its partners have established a Critical Infrastructure Cyber Community (C3) Voluntary Program to help educate business owners about cybersecurity. The C3 Voluntary Program Toolkit for Small and Midsize Businesses contains resources to help your business recognize and address cybersecurity risks, including Fact Sheets for Startups and Leadership and a Hands-On Resources Guide. Learn more at https://www.us-cert.gov/ccubedvp/getting-started-smb.

The Cyber Resilience Review Assessment Tool evaluates ten domains including risk management, incident management, service continuity, and may be conducted as a self-assessment or as an in-person, facilitated assessment. Developed by DHS, this no-cost, voluntary tool helps businesses assess their information technology resilience. For more information, visit https://www.us-cert.gov/ccubedvp/self-service-crr.

Cybersecurity Advisors or CSAs are regionally-located DHS personnel who offer immediate and sustained cybersecurity assistance to prepare and protect organizations, including small and mid-sized businesses. Services include on-site meetings to answer questions, exchange information and address concerns about cybersecurity; educational and awareness briefings; and assessments, including a full-day, expert-led a Cyber Resilience Review (CRR) evaluation that assess cybersecurity management practices. For more information about CSAs, please email cyberadvisor@hq.dhs.gov (link sends e-mail).

Federal Communications Commission
The Federal Communications Commission (FCC), in collaboration with other government agencies and industry leaders, created the Small Biz Cyber Planner – an easy-to-use, free online tool that will help you create a customized planning guide to protect your business from cybersecurity threats. Learn more at www.fcc.gov/cyberplanner

Local Resources
This collection of resources from various levels of government can help small and midsize businesses recognize and address their cybersecurity risks.
Access resources in your area.

ADDITIONAL LINKS AND ARTICLES….
Small Business Tip Card
FCC Ten Cybersecurity Tips for Small Business
Cyber Exposures of Small and Midsize Businesses – A Digital Pandemic
New Survey Shows U.S. Small Business Owners Not Concerned About Cybersecurity; Majority Have No Policies or Contingency Plans
National Cyber Security Alliance