Skip to content

Secure Your Database from Information Leaks

November 24, 2009

Locks, alarms, and cameras can help safeguard your facilities and equipment.  But what about your computer databases—the places where valuable, sensitive, and potentially irreplaceable assets of your small business are stored?

 It may be easy to assume that Internet firewalls and PC passwords are enough to prevent unauthorized access.  But according to Fredric Paul, publisher and editor-in-chief of, an online resource that specializes in the IT needs of small and medium-sized businesses, database breaches from both external and internal sources are increasing at an alarming rate. 

 “Small businesses face a higher risk because they usually lack the IT security infrastructure and expertise of larger, but no less vulnerable, corporations,” Paul explains.  “Because small businesses also lack the resources and expertise to detect and respond quickly to a breach, the consequences of unauthorized access are greater as well.”

 Here are some steps for keeping your small business database as safe as possible:

 Enable security capabilities.  Many off-the-shelf databases have only limited default security controls.  Make sure that all authentication controls are enabled, and avoid using common passwords for user and administrator accounts.

Give the database a security check-up.  Before entering any data, make no unwanted or unnecessary sharing features are activated by default.  Check the software developer’s website every few months to ensure that your version is up-to-date with all the latest security patches. 

Restrict database access.  Even if you have a small, trusted staff, access to the database should be limited to a need-to-know basis.  This will prevent passwords and other important information from being misused or unintentionally shared.  It also provides an extra measure of safety in the event today’s colleague becomes tomorrow’s competitor.

 Make regular backups.  Depending on the size and extent of your small business databases, back-ups should be made on a monthly, weekly, or even daily basis.  The data should be stored in encrypted format to further minimize its value to a data thief.  Back-ups should also be kept at a secure, off-site location in the event your normal place of business become inaccessible due to weather, fire, or natural disaster.

Keep track of trends.  Even if you don’t consider yourself a computer whiz, safeguarding IT resources is easier when you take a proactive approach.  Resources such as can provide valuable information and tips for ensuring your system stays in step with your small business’s needs.

SCORE Lancaster is a nonprofit organization of more than 50 volunteer mentors who provide free, confidential business counseling,  and training workshops,  to small business owners.  Call us at 717-397-3092, or find us online at

No comments yet

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: