The government has resources to help smaller-sized businesses with security compliance.
The National Institute of Standards and Technology (NIST) developed a reference guideline about cyber-security for small businesses. The document presents a small business information security program in non-technical language.
NIST understands that security may not be a high priority for small businesses. However, an information security incident can be detrimental to a smaller-sized business. Each business, regardless of size, must understand and manage risks to their electronic information. The NIST report can be useful for evaluating, addressing, and preventing security problems. A copy of the NIST report/guidelines may be accessed by clicking here.