The Canadian government has released a Cyber security controls standards document meant for small and medium sized business (499 employees or less), along with a certification program called CyberSecure Canada.
Cyber risks seem to be getting worse. Dangers include external hackers, phishing and social engineering attempts, and intentional and unintentional internal leaks. Responsibility is now considered to be at the board level, and does not stop at the CIO.
Cyber security can be a daunting task for small business. As the standard says, normal security standards “… are expensive to implement, beyond the financial and/or human resources means of most . . . [more]