First published: 09 Oct 2019
Last updated: 16 Jun 2023

Content written for

Small & medium business

For a small business, even a minor cybersecurity incident can have devastating impacts.

This guide includes basic security measures to help protect your business against common cyberthreats. As a starting point, we recommend the following three measures:

  • Turn on multi-factor authentication
  • Update your software
  • Back up your information

This guide might include measures that are not relevant to your business, or your business may have more complex needs. After completing this guide, we recommend small businesses implement Maturity Level One of the Essential Eight.

If you have questions about this advice or cybersecurity more broadly, we recommend you speak to an IT professional or a trusted advisor.

Cyberthreats to small businesses

Secure your accounts

Protect your devices and information

Prepare your staff

Use Secure by Design products and services

'Secure by Design' is a security-focused approach to the design, development and deployment of products and services.

As cyberthreats grow more complex and widespread, it's crucial to use secure technologies that protect the privacy and data of users. We recommend choosing manufacturers and cloud service providers that prioritise security from the outset. Learn more about Secure-by-Design.

For guidance on Secure-by-Design products such as ChromeOS and Microsoft 365, refer to our small business cloud security guides.

Was this helpful?
Yes this was helpful
No this was not helpful

Thanks for your feedback!

We welcome additional feedback below.

Rate this product’s level of technical advice:
Rate this product’s usefulness:
Rate the product’s quality of analysis:
Rate the product’s timeliness: