We are leading efforts to help businesses safeguard themselves against cyber and data breach threats
Small businesses are under cyber and data-breach attacks by nation-states, as well as organized and disorganized criminals, who are stealing intellectual capital, personal and business information, and creating havoc in business environments. Americas SBDC and local Small Business Development Centers (SBDCs) are providing small businesses with some simple awareness information and a path forward to a more in-depth assessment of their online security
Note: the CMM below is what many call the CMMC representing the department of defenses cybersecurity maturity model certification. We chose to use the term CMM or cybersecurity maturity model. This site is in the process of rebranding to the CMM.
Americas SBDC is leading efforts to promote the use of a collection of publicly available standards and frameworks embodied in what is called the CMM for all businesses as our North Star.
Why is this important? Basic cyber and data protection revolves around the simple concept of CIA (Confidentiality, Integrity, Availability). Information needs to be held Confidential. The information needs to have Integrity. if someone breaks in and alters the data it can be a big problem, we can’t count on it. Information needs to be Available for use. If the information is kept from us by ransomware, or our computers are slowed down by a cyber attack to the point that we can not get information in time we are in trouble.
Without direction, we can be doing great things but be lost. The CMM provides the foundation for WHAT we need to do to protect information. There are many ways to accomplish HOW to do it. This North Star (CMM) gives us the opportunity to share good practices and measure effectiveness.
Information about Basic Cyber for All Businesses can be found HERE in simple language. All the other awareness information maps directly to level one and higher levels.
Two Definitions of Personal Identifiable Informaton:
CCPA defines personal information as information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers.
PII includes any information about an individual maintained by an agency, including, but not limited to, education, financial transactions, medical history, and criminal or employment history and information which can be used to distinguish or trace an individual’s identity, such as their name, social security number, date and place of birth, mother’s maiden name, biometric records, etc., including any other personal information which is linked or linkable to an individual.
Charles “Tee” Rowe – President/CEO of Americas Small Business Development Centers
“America’s small businesses benefit from utilizing consistent standard based approaches to enhance their cyber security knowledge. This cannot be overstated. Businesses are safer, our nation more secure, and our economy stronger when efforts are coordinated to inform and train them.”
Charlie Tupitza, Cybersecurity and Data Protection Lead, America’s SBDC
“There are great business values associated with using the CMMC. It provides a common “what” for companies to take advantage of, so best practices and lessons learned can be readily shared across the entire small business community. Product and service organizations, as well as internal resources, will be better able to communicate “how” to align support. Since it was our Department of Defense pulling publicly available standards together to develop the CMMC, it makes it easy to rationalize using it.”
Please contact us about sponsorship at cmmc at AmericasSBDC dot org
America’s SBDC is the association that represents America’s nationwide network of Small Business Development Centers (SBDCs).
Contact your local SBDC for no-cost business consulting and low-cost business training.
© 2020 America’s SBDC