Participants Sought for Survey on Cybersecurity Issues for Small & Mid-Sized Businesses

10/23/2019

The U.S. Small Business Administration is working with the U.S. Department of Homeland Security and the Information Technology Coordinating Council to attract respondents to a confidential cybersecurity survey for small and mid-sized businesses.  October is designated National Cybersecurity Awareness Month.

“Cyber attacks are a growing concern for small business owners and our economy. The SBA is encouraging entrepreneurs to participate in this survey to help identify best practices that reduce threats to small and mid-sized business’ data and information, two items central to their operations,” said SBA Regional Administrator Steve Bulger, who oversees the agency’s operations throughout New York, New Jersey, Puerto Rico and the U.S. Virgin Islands.

DHS’ Cybersecurity & Infrastructure Security Agency and the ITCC are the primary agencies coordinating this survey with assistance from the SBA and its Office of Advocacy. 

In 2018, the FBI reported the cost of cybercrimes reached $2.71 billion with almost $1.3 billion occurring from business e-mail/e-mail account compromises, approximately $270 million in losses from data breaches, $362.5 million in confidence fraud and $70 million in spoofing.  In fact, New York and New Jersey were among the top 10 states where the most victims of cyber crimes live according to the report.

“Cybersecurity is an issue that effects all businesses, but many small and medium businesses do not have the resources or even the awareness to adequately protect themselves.  This survey will provide critical data to the federal government to assess these issues and our state of preparedness,” said SBA Regional Advocate Christine Myers from the Office of Advocacy.

The voluntary survey is open to all small businesses and will not publish confidential or identifiable information from respondents.  Participation in the survey will help inform the Cybersecurity Framework being developed by the National Institute of Standards and Technology in addition to other federal agencies.

Survey results are intended to produce data about which sources small and mid-sized businesses use to reference cybersecurity best practices, the specific assets and management practices of each company, such as physical access management, as well as the benefits of, and the cost of the NIST’s framework use and implementation.  Cybersecurity awareness and current cyber risks to small businesses will also be covered.

The survey data will be collected and anonymized by ACT | The App Association.  Questions or concerns regarding the survey can be addressed to Brian Scarpelli at BScarpelli@actonline.org (link sends e-mail) or Alexandra McLeod at AMcleod@actonline.org (link sends e-mail).

###

About the U.S. Small Business Administration

The U.S. Small Business Administration makes the American dream of business ownership a reality. As the only go-to resource and voice for small businesses backed by the strength of the federal government, the SBA empowers entrepreneurs and small business owners with the resources and support they need to start, grow or expand their businesses, or recover from a declared disaster. It delivers services through an extensive network of SBA field offices and partnerships with public and private organizations. To learn more, visit www.sba.gov.

About the SBA Office of Advocacy

The Office of Advocacy of the U.S. Small Business Administration is the independent voice for small business within the federal government, the watchdog of the Regulatory Flexibility Act, and a source of small business statistics and research. Advocacy advances the views and concerns of small business before Congress, the White House, federal agencies, federal courts, and state policymakers.  Learn more at: https://advocacy.sba.gov/