Small businesses are putting themselves at risk as a result of not implementing comprehensive security controls, a new survey from security firm Symantec has shown.
The cost of not introducing robust security measures can be high – of the UK companies surveyed, 25% admitted that a recent security breach resulted in a tangible loss of business and 13% reported a monetary loss as well.
Small businesses’ knowledge about IT security is somewhat patchy – while 85% understand the common threats associated with viruses, spam, trojans, spyware and worms, a third aren’t so astute when it comes to new and increasingly sophisticated threats such as botnets, rootkits, pharming, whaling and minnowing.
Furthermore, small British businesses do not realise that everybody has a part to play in providing a secure IT working environment. The survey’s results show that 43% thought it is solely the duty of the IT manager and 34% thought that responsibility for IT security falls with the managing director.
Small firms’ lack of preparation was highlighted when they were asked about the frequency with which they update the company’s IT security. The results revealed that while 42% do it daily, 15% do it weekly and 6% monthly.
When questioned about the risks posed by modern IT systems and infrastructure, it was security with wireless infrastructure that kept IT managers awake at night, with 72% admitting their was their primary cause of concern.
John Brigden, senior vice president at Symantec said small companies shouldn’t wait for a security breach before tightening up their defences. “With system downtime and loss of information being among the biggest threats to a business’s brand, customer loyalty and ultimately revenue generation, it is imperative that small businesses realise that simple and cost effective IT security can ensure they withstand even the most determined attempt to breach a company’s security,” he commented.
© Crimson Business Ltd.
