The security industry has underestimated small and mid-sized businesses sometimes. Many myths haunt SMBs, resulting in the misconception they don’t take safety as as larger businesses seriously. But thank you to a recently available survey, information collected from almost 500 SMBs (defined right here as organizations with 250-499 employees) reveals another story.

In a recently available Cisco Chat Live streamcast, Cisco Item Marketing Manager Hazel Burton sits down with Advisory CISO Wolf Goerlich, and co-founder of Elevate Security Masha Sedova to go over these results and debunk several SMB security myths.

One of the biggest myths surrounding SMBs is that their leadership doesn’t security and information privacy take seriously. Our data shows this is simply not the full case.

In fact, 87% of SMB leaders consider security a higher priority. Likewise, 84% of SMBs possess mandatory protection training programs for workers, and 90% of SMBs possess a data privacy plan that the business knows. For comparison, 88% of respondents from bigger organizations (500+ workers) have a mandatory safety training program, showing SMBs are usually as serious about protection as their bigger counterparts just.

Just what exactly does this mean for SMB leadership? Properly, it implies that security is really a prevalent boardroom subject. SMBs are going for a top-down approach, utilizing the charged power associated with executive buy-in in order to align their business contrary to the growing risk of cyber-attack.

That’s the good thing. But increased awareness might not reflect effective action.

As Masha Sedova highlights, the prevalence of mandatory teaching programs, in some full cases, might just reflect a need to satisfy compliance mandates. Eventually, it’s about creating a strong lifestyle of cybersecurity over the continuing business, so that employees perform become SMBs&rsquo really; first type of defense. Unengaging training applications that discourage workers from caring about safety do a lot more harm than great actually. While it’s encouraging to notice organizations have protection conversations with workers and from the C-level, that is only a first step.

To create action possible, security must be reframed. Wolf Goerlich advises that security leaders should engage a lot more with business outcomes directly. For non-security-oriented departments, safety can be seen being an inconvenient add-on. Interacting the relevance of protection to the requirements of specific departments can help get everyone on a single page as to the reasons security matters. Alignment will make sure that executive leadership proceeds to prioritize effective security procedures also, benefitting organizations plus the interpersonal people they serve.

Note: this website is section of a five component series. Subsequent weblogs to follow.

To watch the entire streamcast, please visit Cisco Chat Live SMB Myth Busting

If you are thinking about unpacking a lot more myths surrounding SMB safety, consider reading “Big Security in your small business World”

To listen to more from Wolf Goerlich with this topic, please visit Big Security in your small business World: 10 myth busters for SMB cybersecurity

The post SMB Cybersecurity: THE TRUE Great things about a Top-Down Approach appeared very first on Cisco Blogs.