Small and midsized businesses (SMBs) are outgunned by cybercriminal and activist organizations focused on stealing anything they can leverage to obtain financial gains, perform corporate espionage, further political agendas, and pursue other objectives. Every organization, no matter the size, is a target.
Many SMBs assume a large budget is necessary to mount an effective defense against these actions, yet this is often not the case. Information security is not just a technology issue; at its core, it is about managing risks to combat threats.
This book provides SMBs and other interested parties with practical risk management principles and information they can apply to implement and maintain a pragmatic and functional information security program, from a subject matter expert with over 34 years of experience.
Whether you are handling the leadership of an information security program in-house with existing resources or enlisting the services of a virtual Chief Information Security Officer (vCISO), Information Security for Small and Midsized Businesses will help you make risk-informed decisions to keep your SMB's information as secure as possible.