SMEs and the Cyber Risk in the Digital Marketplace

16 Jun 2016

SMEs and the Cyber Risk in the Digital Marketplace

What is Cyber Security? For small businesses (and for some larger ones) the word “Cyber” just sounds like an extra expense, something they perceive they don’t need or something they don’t need to understand.

Why do small businesses need to consider Cyber Security?

The principle can be as simple as “if you have something worth selling then you have something worth stealing”. Information now has a value of its own. SMEs have a wide variety of information that can be bought and sold on a well-established criminal market either for direct criminal use or to facilitate wider fraudulent activity; e.g. customer data and orders, client information and billing details, employee records, accounts and financial records.

The IT systems we use to run our businesses are our commercial lifeblood.  Criminals have researched and know exactly how much SMEs are prepared to pay to recover data encrypted by Ransomware. 

Also, the type of data that some SMEs hold on behalf of others is important:  legal data, financial data, medical data or some other type of sensitive information.  How much damage would it do to a trading position if an SME has to publicly admit that it had lost data that was considered by their clients to be commercially or personally sensitive or subject to their own Data Protection responsibilities? Another consideration is the extent to which an SME represents an easy access point for criminals and other malicious actors into larger targets.   Losing data from your own business is bad enough, but being the launch pad from which an attacker or criminal can access more valuable organisations in a supply chain can cause contractual loss and potentially irrecoverable damage.  

The Digital Marketplace is just that – a marketplace.  It simply needs thinking about with the same principles as a normal physical high street. You wouldn’t open a shop on a modern high street without thinking about where you keep your cash register, and where you’d lock it up at night; whether you’d have a fire alarm and burglar alarm; whether you’d have CCTV and a shutter.  You would, of course, have a storeroom, a safe and somewhere where you would keep your company records. You’d perhaps have additional security measures such as tags on your more valuable sales items, you’d have a key for the shop.   For all these measures you’d also have a defined group of people who would be allowed access to some or all of them. And importantly, if any of these processes failed and you fell victim to a robbery or theft you’d know who to call and what to do.

SMEs in the digital age need all of these things for their computer networks and online presence. Luckily there’s a guide and somewhere to start and for an SME that’s Cyber Essentials.

Cyber Essentials is the UK Government’s Guide to Cyber Security.  It represents the basic and most common forms of protection and it’s broken down into 5 easy to understand and easy to implement areas.   PGI has an on-line user-friendly Cyber Services Portal which will guide organisations through every step of the short process and help to educate and assure small businesses on the cyber threat and how to safely and affordably combat it.

For the latest PGI updates like our pages on LinkedIn – PGIPGI Cyber and Facebook – PGIPGI Cyber

Share this article


Your free global geopolitical
risk dashboard

PGI’s Risk Portal tool provides daily intelligence feeds, country threat assessments and analytical insights, enabling clients to track, understand and navigate geopolitical threats.

The Risk Portal gives users up-to-date information and analysis on global affairs.

The Risk Portal allows users to visualise information in a unique and instantly understandable way. Mapping filters enable the visualisation of incidents by threat category, time period, perpetrator and target type.

Risk Portal users can upgrade their accounts to include the Report Builder and Country Profile Generator features. The Report Builder allows users to select information, data and images from the Risk Portal and create bespoke reports and emails.

Subscribers to PGI’s Bespoke services receive tailored analysis on specific sectors and geographies of interest, delivered at a frequency they determine.

Visit the Risk Portal

Subscribe to our Cyber Bytes Newsletter

Keep yourself in the loop with PGI by signing up to our Monthly Cyber Bytes email. You will receive updates, tips and narrative around what has been happening in the world of information security.

Get in touch today

For more information on how we can help you or your business, please contact us via:

Related News

CISMP, CISSP and CISM - what's in an acronym?

20 Mar 2017

There is a wide range of different security courses available, and a mind-boggling array of certific...

Read news article

International Womens Day - Pioneering Women in Tec...

08 Mar 2017

Pioneering Women in Technology – Katherine JohnsonThe Oscar season has been and gone. The...

Read news article

Law Firms and why they need cyber security

06 Mar 2017

Suffering a data breach can be devastating for any company but for law firms the impacts can be part...

Read news article
Back to the News Hub

Follow us

+44 (0)207 887 2699
©2017 PGI - Protection Group International Ltd. All rights reserved.
PGI - Protection Group International Ltd is registered in England & Wales, reg. no. 07967865
Registered address: Cascades 1, 1190 Park Avenue, Aztec W, Almondsbury, Bristol BS32 4FP