Guidelines

Bookmark
FaDownload
Download listing
Settings
downloads
yes
Contents
Cybersecurity guide for SMEs - 12 steps to securing your business

The COVID-19 crisis showed how important the Internet and computers in general are for SMEs. In order to thrive in business during the pandemic many SMEs had to take business continuity measures, such as adopting to cloud services, improving their internet services, upgrading their websites and enabling staff to work remotely. This short guide provides SMEs with practical 12 high level steps on how to better secure their systems and their business. It is a companion publication to the more detailed ENISA report “Cybersecurity for SMES -Cybersecurity guide for SMEs Challenges and Recommendations”.

Cybersecurity for SMEs - Challenges and Recommendations

In response to the COVID19 pandemic, ENISA analysed the ability of SMEs within the EU to cope with the cybersecurity challenges posed by the pandemic and determining good practices to address those challenges. This report provides cybersecurity advice for SMEs, but also proposals for actions that Member States should consider in order to support SMEs improve their cybersecurity posture.

Threat Landscape for Supply Chain Attacks

This report aims at mapping and studying the supply chain attacks that were discovered from January 2020 to early July 2021. Based on the trends and patterns observed, supply chain attacks increased in number and sophistication in the year 2020 and this trend is continuing in 2021, posing an increasing risk for organizations. It is estimated that there will be four times more supply chain attacks in 2021 than in 2020. With half of the attacks being attributed to Advanced Persistence Threat (APT) actors, their complexity and resources greatly exceed the more common non-targeted attacks, and, therefore, there is an increasing need for new protective methods that incorporate suppliers in order to guarantee that organizations remain secure.

Tips for selecting and using online communication tools

ENISA offers some practical advice to SMEs with regard to the security and privacy aspects that should be considered upon the selection and use of online communication tools. The coronavirus outbreak has affected and changed the way small and medium sized enterprises (SMEs) across the EU are doing business, both internally and externally with suppliers and customers. Indeed, SMEs face the new challenge of working remotely in a way that it is still productive, efficient but also secure. Online communication tools (including video/audio conferencing, instant messaging, remote document sharing/file exchange, internet streaming) are key to help SMEs follow-up with these novel working regimes. Among other aspects, the security and privacy settings of such tools are fundamental for efficient operation.

Tips for cybersecurity when buying and selling online

The EU Agency for Cybersecurity has developed 10 tips for SMEs and citizens to stay secure when buying and selling online. SMEs make up 99% of the European businesses and while 77% of SMEs have a website only 17% are selling online (Digital Economy and Society Index (DESI) 2019). At the same time, 41% of Europeans are concerned about the security of online payments (Eurobarometer Europeans’ attitudes towards cyber security – January 2020).

Guidelines for SMEs on the security of personal data processing

ENISA undertook a study to support SME’s on how to adopt security measures for the protection of personal data, following a risk-based approach. In particular, the objectives of the study were to facilitate SMEs in understanding the context of the personal data processing operation and subsequently assess the associated security risks.

Information Package for SMEs

Authors: Technical Department of ENISA, Section Risk Management, in cooperation with:, Mr. George Patsis, Obrela Security Industires (OSI)

ENISA approach to Business Continuity for SMEs

This is an ENISA deliverable aiming to facilitate a knowledge transfer of IT Business Continuity issues to Small Medium Enterprises (SMEs). Research concludes that SME leadership needs to engage, understand and implement formal business continuity processes, including technical and organizational measures. This deliverable has been developed outside the ENISA work program to satisfy the need of SMEs for a simplified approach. It provides a basis for planning to ensure an organization’s long-term survivability following a disruptive event caused by certain natural or man-made threats.

Cloud Security Guide for SMEs

This guide wants to assist SMEs understand the security risks and opportunities they should take into account when procuring cloud services. This document includes a set of security risk, a set of security opportunities and a list of security questions the SME could pose to the provider to understand the level of security. The risks and opportunities are linked to the security questions so the end result is customised according to the user's needs and requirements. This information is supported by two example use cases and an annex that gives an overview of the data protection legislation applicable and the authorities involved in each country.

Information Security and Privacy Standards for SMEs

The analysis conducted for this study, based on the interviews with subject matter experts and review of available studies, shows that, despite rising concerns on information security risks, the level of SMEs information security and privacy standard adoption is relatively low. The main existing drivers and barriers that contribute to the limited uptake of information security and privacy standards in European SMEs have been identified and analysed in this

Cybersecurity Self-Assessment for SMEs

Cyber-attacks such as data breaches, distributed denial-of-service (DDoS) attacks and ransomware are increasing, and the consequences can be significant for any organisation, from financial losses to damaged reputations. Despite large companies having increased their budget allocation to face cyber security, when it comes to SMEs, it is still very hard for them to implement efficient security measures which are usually perceived as too complex, time consuming and requiring a high level of technical knowledge.

Cybersecurity Guide for SME

Belgium: Cyber-attacks such as data breaches, distributed denial-of-service (DDoS) attacks and ransomware are increasing, and the consequences can be significant for any organisation, from financial losses to damaged reputations. Despite large companies having increased their budget allocation to face cyber security, when it comes to SMEs, it is still very hard for them to implement efficient security measures which are usually perceived as too complex, time consuming and requiring a high level of technical knowledge.

Cybersecurity Guide for SME

This cyber security guide was developed by the Centre for Cyber security Belgium (CCB) in partnership with the Cyber Security Coalition Belgium for small and medium-sized enterprises (SME). It is based on input and best practices from private and public entities.

La cybersécurité pour les tpe/pme en douze questions

L'ANSSI publie, en partenariat avec la direction générale des entreprises (DGE), un nouveau guide destiné aux TPE et aux PME. Réalisée avec le soutien du dispositif Cybermalveillance.gouv.fr, cette publication propose des réponses accessibles à 12 questions essentielles pour la sécurité de ces entreprises.

Plateforme d’assistance et Prevention du risque numérique

Cybermalveillance.gouv.fr a pour missions d'assister les particuliers, les entreprises, les associations, les collectivités et les administrations victimes de cybermalveillance, de les informer sur les menaces numériques et les moyens de s'en protéger.

Les 10 mesures essentielles pour assurer votre sécurité numérique - Assistance aux victimes de cybermalveillance

Que ce soit dans un cadre professionnel ou personnel, l’utilisation des outils numériques ne cesse de croître et de se diversifier. Ordinateurs de bureau ou portables, téléphones mobiles, tablettes, objets connectés… Ils font de plus en plus partie de notre quotidien. Cette intensification des usages représente pour les cybercriminels une opportunité de développer leurs attaques. Comment se protéger au mieux face à ces risques ? Voici 10 bonnes pratiques essentielles à adopter pour assurer votre sécurité numérique.

This site uses cookies to offer you a better browsing experience.
Aside from essential cookies we also use tracking cookies for analytics.
Find out more on how we use cookies.

Accept all cookies Accept only essential cookies