Green computer screen that says your computer has been secured with caption bbb digital defense plan

Protect your business in the digital age with BBB's Digital Defense Plan

Stay proactive against digital threats with these four steps.

Back to BBB's cybersecurity HQ

Cybersecurity starts with understanding your business's unique risks.

If you want to plan for potential cyber incidents, you may be wondering where to begin.

   

What you'll learn:

  • What steps can my business take to be proactive about cybersecurity?
  • How can I use BBB’s Digital Defense Plan for my business?
  • Where can I go to get help with business cybersecurity?

BBB’s Digital Defense Plan includes four steps that focus on practical, preventative measures to help your small business protect its data and systems, minimize the impact of potential threats, and maintain your trusted relationships with your stakeholders.

Step 1: Scan

Figure out what important devices and information your business uses and what could be at risk for a cyber incident.

Take inventory of key technologies you use and the sensitive data you store. Critically examine your cybersecurity practices to see where your vulnerabilities lie and what types of threats to which you could be most susceptible. Understand what information you would need to rebuild your infrastructure from scratch.

Step 2: Safeguard

Put simple protections in place to keep your data and devices safe.

Develop policies and implement safeguards that protect your data, devices, and employees. Use secure passwords and multi-factor authentication, train staff, and ensure contracts with service providers include cybersecurity expectations. 

Step 3: Spot

Keep an eye out for anything unusual and make sure your team knows how to spot and report problems.

Establish systems and measures that alert you to unusual activity or potential threats. Encourage your employees to report suspicious behavior and keep software and monitoring tools up to date.

Step 4: Stabilize

Have a plan and be ready to act fast if something goes wrong.

Have a plan in place to respond to incidents quickly so you can minimize damage and ensure critical operations can continue normally. After an incident occurs, focus on restoring your systems, protecting your customer data, and communicating clearly to your stakeholders to maintain trust and protect your reputation.

Tips for using BBB’s Digital Defense Plan:

  • Involve your entire staff. Since each employee has a different role and uses different tools and systems, everyone can help ensure no critical programs or software are left out of your Digital Defense Plan. Your employees can also help you identify potential vulnerabilities and weaknesses in your systems.
  • Document everything. Once your plan is set, keep a written record of all your cybersecurity policies, procedures, and updates. Give a copy to everyone you employ, including vendors that work in the digital space.
  • Re-evaluate often. Technologies are always changing. Make it a priority to re-evaluate the four steps each year to ensure you aren’t forgetting about any new or updated technologies that are vulnerable to risks.

Need cybersecurity assistance?

If your team isn’t equipped to handle a cybersecurity overhaul, you can seek outside help. Search for cybersecurity businesses or business consultants near you.

You can also visit BBB’s list of cybersecurity resources for businesses.

Close up of a woman's hand paying bill with credit card in a cafe, scanning on a card machine. Electronic payment. Banking and technology
You and your technology

Read all of BBB's business tips on technology.

Read more about business technology
AI Chat office
Artificial intelligence HQ

Looking for resources on AI? BBB has you covered.

Visit the Artificial Intelligence HQ
SECURE CONCEPT
More cybersecurity tips

Find all of BBB's cybersecurity tips and resources here.

Visit the cybersecurity HQ