Back to top

Encompass® Insurance Insights & Articles



Small Business Cyber Security Training for Employees

From wireless network security to employee passwords, the FCC is encouraging small businesses to make cyber security a top priority. Lack of proper procedures for securing information and loose or non-existent policy enforcement are two of the most common reasons for cyber security breaches, according to the Small Business Administration (SBA). Cyber security training can help equip employees with the knowledge and resources to confidently follow your company's cyber security policies and mitigate threats.

Group of employee looking at the traing instructor.

Establish Training Guidelines

  1. What are the training objectives? Whether it is website tampering, data theft, malicious codes or viruses, the SBA recommends educating employees on the basics of security concerns with a special focus on issues related most closely to their work. For example, if an employee will need to access confidential data, the employee may benefit from additional training on data theft mitigation.
  2. Who will be trained? Depending on the size of your company, you might want to implement smaller departmental training or have the entire company participate in a single training program. Consider integrating cyber security training into new-hire onboarding programs, including training for summer interns. If your business includes part-time contractors, remote freelancers or IT outsourcing, consider whether these individuals should also receive training.
  3. What's your budget? Depending on your company's needs, you might benefit from working with a cyber security consultant who will conduct the training in-house. If your budget is limited, the SBA offers free, self-paced training resources.
  4. How often will this take place? Since cyber security threats are continually evolving as technology progresses, your company may wish to schedule recurring training that updates the team on the latest threats. Go back to your review of your employees' roles to determine who could be most vulnerable to cyber concerns.

These guidelines can help you when you start developing the right training tools and materials to help keep your employees and your business safe from cyber threats.


A group of Encompass agents

Customer Centric. Agent Focused.

Our simple, tailored approach to coverage offers powerful benefits to you and your clients.

Become an Agent

The general information contained in The Encompass Blog is provided as a courtesy, and is for informational and entertainment purposes only. The contents of this website are subject to periodic change without notice. Information provided on The Encompass Blog is not intended to replace official sources. Although attempts will be made to ensure that the information is accurate and timely, the information is presented "as is" and without warranties. Information contained on The Encompass Blog should not be mistaken for professional advice. Information contained herein should not be considered error-free and should not be used as the exclusive basis for decision-making. Use of website information is strictly voluntary and at the user's sole risk. We encourage you to obtain personal advice from qualified professionals when making decision regarding your specific situation.

Other resources linked from these pages are maintained by independent providers. The Encompass Blog does not monitor all linked resources and cannot guarantee their accuracy. Statements, views and opinions included in an independent provider's material are strictly those of the author(s). These views may not necessarily represent the opinions or policies of The Encompass Blog, the Encompass family of companies or its agents, officers or employees.

ECC Monitor: OK