Easy-to-implement measures against growing cyber risks
The Swiss Digital Security Alliance has published a new cybersecurity check for SMEs. This is a practical tool that helps companies significantly increase their level of security with minimal effort.
Only 42% of Swiss SMEs feel adequately protected in the event of a cyberattack—a significant decline from 55% in the previous year. At the same time, more than one in four SMEs now consider cybersecurity to be «not a priority.». Against this backdrop, the completely revised Cybersecurity Check for SMEs is now being released. This tool is designed to help companies increase their security level with manageable effort. The Cybersecurity Check was first developed in 2020 as part of the National Strategy for Protecting Switzerland from Cyber Risks (NCS). The now completely revised 2025 edition was developed in collaboration with: ADSS, BACS, BDO, digitalswitzerland, EXPERTsuisse, GObugfree, ISSS, SATW, SISA, SNV, SQS, Suissedigital, and SVV.
Situation comes to a head – SMEs not doing enough
The current study «SME Cybersecurity 2025» reveals a dangerous discrepancy: the threat posed by cybercrime remains high, but SMEs are increasingly hesitant to respond. Many companies have neither clear organizational structures nor defined emergency procedures or regular security checks.
«Many SMEs know they need to take action, but they lack guidance and clear priorities. The cybersecurity check shows where the most important levers are – and how to get started with realistic steps,» says Andreas Kaelin, Allianz Digital Security Switzerland.
Take action now: Five areas of action
The publishers recommend that SMEs make cybersecurity an integral part of their corporate management. Many measures—secure passwords, consistent updates, clear access rights, or a simple emergency plan—can be implemented quickly but significantly increase resilience.
The cybersecurity check provides specific recommendations in five areas that are particularly relevant for Swiss SMEs:
- Organization & Processes
- Employees & Awareness
- Technical protective measures
- Privacy Policy & Legal Information
- External partners & service providers
In addition, a self-assessment helps to determine your own level of maturity and define specific priorities. «Especially in cybersecurity, where risks are complex and dynamic, standards create reliability and guidance—the Cybersecurity Check translates these principles into clear, practical criteria for SMEs,» says Marcel Knecht, Swiss Association for Standardization (SNV).
Qualified IT partners as a factor for success
The cyber study shows that external IT service providers play a key role for SMEs – but at the same time, there are significant differences in quality. «CyberSeal provides guidance for SMEs and shows which service providers have been proven to guarantee an adequate level of protection. The cybersecurity check also illustrates how external partners should be optimally integrated,» explains Florian Muff, Head of Auditors at CyberSeal ADSS.
Source and further information: www.cybersecurity-check.ch
