[Opinion] It’s time for government to mandate security standards for SMBs

By on
[Opinion] It’s time for government to mandate security standards for SMBs
Nick Beaugeard, World of Workflows

In today's digital landscape, small and medium-sized businesses (SMBs) are increasingly targeted by cybercriminals, with the average cost of a cyberattack on Australian SMBs reaching nearly $50,000.

I attended a SMBiT Professionals Sydney Chapter meeting this week and it was obvious that despite this, many SMBs remain underprepared, often due to limited resources and awareness.

To address this, I think all levels of Australian government must take decisive action to promote engagement with standards-based IT security suppliers, thereby enhancing the cyber resilience of our business community.

They have done some things:

  • Small Business Cyber Resilience Service: Launched as part of the 2023–2030 Australian Cyber Security Strategy, this initiative provides free, tailored, one-on-one support to help SMBs improve their cyber resilience and recover from cyber incidents.
  • Small Business Cybersecurity Guides: The Australian Cyber Security Centre (ACSC) offers resources such as the Small Business Cyber Security Guide and Checklist, designed to help businesses implement basic security measures.
  • Cybersecurity Health Check Programs: Voluntary programs have been established to allow businesses to assess and improve their cybersecurity postures, aiming to make SMBs less attractive targets for cybercriminals.

None of these fix the need for marketing and education and standardisation.

There is a pressing need for a unified, standards-based approach to IT security for SMBs.

Just as we have stringent standards for safety equipment like crash helmets and baby car seats, our businesses deserve robust cybersecurity standards to protect their operations and customer data.

I think government can help by:

  1. Develop and mandate cybersecurity standards: Introduce clear, mandatory cybersecurity standards tailored for SMBs, similar to the Essential Eight framework recommended by the ACSC.
  2. Incentivise compliance: Provide financial incentives, such as tax breaks or grants, to SMBs that engage with certified, standards-based IT security suppliers.
  3. Enhance public awareness campaigns: Launch nationwide campaigns to educate SMBs on the importance of cybersecurity and the benefits of adhering to established standards.
  4. Facilitate access to certified suppliers: Create a government-endorsed registry of IT security suppliers who meet the required standards, making it easier for SMBs to find trusted partners.

It's time for Australian governments at all levels to prioritise the cybersecurity of our SMBs by promoting engagement with standards-based IT security suppliers. By implementing clear standards, providing incentives, and raising awareness, we can build a more resilient and prosperous business landscape.

Otherwise our small businesses are trapped in an eternal game of cat and mouse, one we are all losing.

What do you think? Would love to see the comments!

Nick Beaugeard is the co-founder and CEO of Australian business process automation company World of Workflows.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © nextmedia Pty Ltd. All rights reserved.
Tags:
government cybersecurity nick beaugeard security smb security smb security standard world of workflows

Partner Content

How NinjaOne Is Supporting The Channel As It Builds An Innovative Global Partner Program
How NinjaOne Is Supporting The Channel As It Builds An Innovative Global Partner Program
Channel can help lead customers to boosting workplace wellbeing with professional headsets
Channel can help lead customers to boosting workplace wellbeing with professional headsets
Secure, integrated platforms enable MSPs to focus bringing powerful solutions to customers
Secure, integrated platforms enable MSPs to focus bringing powerful solutions to customers
Kaseya Dattocon APAC 2024 is Back
Kaseya Dattocon APAC 2024 is Back
Tech For Good program gives purpose and strong business outcomes
Tech For Good program gives purpose and strong business outcomes

Sponsored Whitepapers

Stop Fraud Before It Starts: A Must-Read Guide for Safer Customer Communications
Stop Fraud Before It Starts: A Must-Read Guide for Safer Customer Communications
The Cybersecurity Playbook for Partners in Asia Pacific and Japan
The Cybersecurity Playbook for Partners in Asia Pacific and Japan
Pulseway Essential Eight Framework
Pulseway Essential Eight Framework
7 Best Practices For Implementing Human Risk Management
7 Best Practices For Implementing Human Risk Management
2025 State of Machine Identity Security Report
2025 State of Machine Identity Security Report

Events

techpartner.news MSP index - Brisbane
techpartner.news MSP index - Brisbane
techpartner.news Channel Leader List / Golf day
techpartner.news Channel Leader List / Golf day
techpartner.news Pipeline Conference 2025
techpartner.news Pipeline Conference 2025
Integrate Expo 2025
Integrate Expo 2025
Security Exhibition & Conference 2025
Security Exhibition & Conference 2025

Most read articles

Vic gov to spend $100m on cyber security

Vic gov to spend $100m on cyber security
MSPs pressed to review ransomware response as new reporting rules commence

MSPs pressed to review ransomware response as new reporting rules commence
AI ambition: Nick Beaugeard looks to harness AI agents to provide tech services

AI ambition: Nick Beaugeard looks to harness AI agents to provide tech services
Tech Research Asia to present Australian IT M&A report

Tech Research Asia to present Australian IT M&A report

Log in

Email:
Password:
  |  Forgot your password?