With the increasing availability and affordability of broadband access, more small and medium-size businesses (SMBs) are connecting their IT networks to the Internet and expanding their use of remote network connectivity. In addition, SMBs are increasingly conducting business over the Internet, making electronic payments and other financial transactions, so their risk has gone up significantly. Such risks are not limited to just their own business but to all those with whom they conduct electronic transactions, including customers, suppliers and other business partners.

Not surprisingly, many large businesses now require SMB partners to implement IT security. Breaches can result in loss of important data, disruption in business and even damage to the business' reputation. It is important, therefore, that SMBs take a comprehensive approach to IT security and adopt all reasonable measures to protect their information.

The big question: What If?
The first step in designing a security system for any business is asking some key questions. What would be the business impact of a major security breach? What if the data stored on PCs or servers is corrupted by a virus and rendered unusable? What if the hard drive fails, resulting in a total loss of data? What if the Web site is attacked, preventing customers from placing orders or if critical customer data is stolen?

The answers to such questions can be very revealing. SMBs may realize that potential costs for IT security breaches include not just replacing a hard drive or stolen laptop, but loss of business, damage to their reputation and even potential legal liabilities. In some cases, lost data may be irretrievable, rendering its cost inestimable.

Thousands of software vulnerabilities are discovered each year. The time between the discovery of new vulnerabilities and related virus attacks is shrinking.

Assess your security needs
However, using these individual security applications can be cumbersome for SMBs that often don't have any IT staff to manage them. Such businesses may consider using integrated security appliances or managed security services.

Start with the network basics: Antivirus, antispam, firewall, intrusion detection
Most people are familiar with antivirus, which is now the most common type of protection. SMBs can install antivirus software and use real-time scanning on their PCs, network gateways and e-mail servers. Many businesses have antivirus software installed on multiple levels instead.

In the last couple of years, businesses have begun adopting antispam software to control unsolicited mail. In addition, firewalls can be very useful in preventing outsiders from accessing your system and preventing unauthorized software from connecting to the Internet. Microsoft now has a firewall built into its Windows operating system but many businesses may want to install firewalls that allow better control over which applications are allowed access.

However, using these individual security applications can be cumbersome for SMBs that often don't have any IT staff to manage them. Such businesses may consider using integrated security appliances or managed security services.

Many security vendors such as Symantec, McAfee, Fortinet, NetScreen and SonicWall have security appliances that provide integrated security. The advantage of these appliances is that a single piece of equipment can potentially provide all commonly needed security products like firewalls, VPNs, antivirus, antispam, intrusion detection. Many vendors also offer subscription services that automatically update the software in their appliances. Given their lower maintenance requirements and comparatively lower total costs, these appliances have become quite popular in recent years.

Another emerging trend is managed security services. Instead of installing various security products on customers' premises, the vendor offers security as a service over the Internet. Customers get the benefit of continuously up-to-date security without having to manage the products in-house.

Cover all systems that connect to your network