Why Small Businesses Have Big Security Concerns
Although many small businesses fear data loss, SMBs lack appropriate disaster recovery plans and are extremely vulnerable to rising security threats.
88% of small businesses equate a disaster recovery plan to a data or insurance policy. 36% of small businesses have a detailed disaster recovery plan in place. 45% of small businesses have only a business continuity and disaster recovery framework.
Organization size directly correlates with respondents’ interest and investment in disaster recovery planning. 25% of companies with less than 100 employees have no disaster recovery plan. 8% with 100 to 250 employees have no disaster recovery plan.
Smaller businesses are less likely to have a separate budget for disaster recovery solutions, taking their chances on data protection.
Most organizations are still focused on internal threats, perhaps because viruses, malware and ransomware are wreaking havoc more than ever. 55% of small business IT decision-makers are more concerned with internal threats than outside forces.
Concern over internal risks increase with employee count. Three in four organizations with 100 to 250 employees are most concerned about internal threats. Under half of small organizations feel the same.
43% of respondents say they would not know what to do if their company was hacked.
More than half of businesses surveyed say data privacy concerns are worse for IT than for health care professionals. 38% report having to meet HIPAA regulations. 32% report having to meet ISO regulations. 22% of businesses report having to meet PCI regulations.
Small businesses are benefiting from more secure cloud environments. 73% of small businesses are already using cloud solutions for business data. 81% of small businesses are already losing cloud solutions for personal data.
Although most businesses trust cloud vendors to protect their data, 75% check vendors’ ability to meet compliance requirements before making a purchase.