Sign In

40 Maryland Businesses Receive Funding for Cybersecurity Training

BALTIMORE, MD (April 30, 2024) — Forty small and midsize Maryland businesses have each received assistance worth up to $22,000 each to help with targeted cybersecurity training and knowledge. The grant funds come from the Maryland Department of Commerce’s Small Business Cybersecurity Resilience in Maryland (SCRIM) program, which was established in 2022 after the state received funding from the U.S. Small Business Administration (SBA) to help create a statewide cybersecurity initiative.

The SCRIM program provides the selected businesses with direct services to help mitigate against future cyber attacks and improve upon existing cybersecurity infrastructure through employee training and advanced hardware and software installation. Eligible businesses include those in the retail, restaurant, finance, healthcare, and manufacturing industries that have been in business for no more than three years with 50 or fewer employees.

Maryland Commerce worked in partnership with the Maryland Small Business Development Center (SBDC) and the Cybersecurity Association of Maryland (CAMI) to develop the SCRIM program as part of the SBA’s ongoing Cybersecurity for Small Business Pilot Program. The SBA’s pilot program provides grants to state governments to help emerging small businesses across America develop their cybersecurity infrastructure. In addition to Maryland, Arkansas and South Dakota also received funding. 

We are thrilled to work alongside our partners at the Maryland Small Business Development Center and the Cybersecurity Association of Maryland to create a stronger cybersecurity safety net in Maryland,” said Maryland Commerce Secretary Kevin Anderson. “As the world and technology evolves, cybersecurity training is becoming increasingly important, and Maryland is doing its part to ensure everyone has the resources they need to stay secure.” 

As part of the program, the selected businesses and its employees will receive an initial cybersecurity audit of existing security protocols and postures. Findings from the audit will then be followed by remediation and mitigation efforts, making adjustments as needed to aid with vulnerabilities found during the cybersecurity assessment. All security scans of existing cybersecurity systems will be performed by in-state contracted service providers; mitigation service contractors will also supply and install the highest priority cybersecurity hardware and software, as identified on the security audit at up to $10,000 per business.

Employees of each business will also receive industry-specific cybersecurity hygiene training completed by representatives of Maryland SBDC. Training will include password creation, data backups, physical security, detection of phishing scams, and incident response. Selected employees, as identified by the original security audit, will complete more extensive training regarding cybersecurity fundamentals, tailored to their level of knowledge. Additionally, these selected employees will complete industry-specific training regarding issues of particular concern to their business. 

"Supported by the Maryland Department of Commerce, CAMI, and the Maryland SBDC, the SCRIM program is an active gateway to cybersecurity resilience. In a world where digital threats loom large, hesitation is understandable, but action is essential,” said Maryland SBDC IT Coordinator Alivin Brown. “Embracing free training, scanning, and mitigation services fortified by expert guidance and support will help elevate defense strategies, safeguarding data and the entire small business community."

"We know cybersecurity is more important than ever for small businesses, but can be overwhelming and confusing for leaders. The SCRIM program removes some initial barriers for small businesses on their cybersecurity journey while empowering them with the knowledge and roadmaps to create a more cyber resilient organization in the future," said CAMI Executive Director Tasha Cornish. 

Over the last several years, cybersecurity initiatives in the small and local business community have gained momentum, bringing attention to the need for national and statewide resources and policy. The development of SCRIM and other small business oriented cybersecurity programs is expected to make a direct impact on the improvement of the overall safety climate of local business communities. 
Close window
Close Disclaimer

Google Translate Disclaimer

The Maryland Department of Information Technology (“DoIT”) offers translations of the content through Google Translate. Because Google Translate is an external website, DoIT does not control the quality or accuracy of translated content. All DoIT content is filtered through Google Translate which may result in unexpected and unpredictable degradation of portions of text, images and the general appearance on translated pages. Google Translate may maintain unique privacy and use policies. These policies are not controlled by DoIT and are not associated with DoIT’s privacy and use policies. After selecting a translation option, users will be notified that they are leaving DoIT’s website. Users should consult the original English content on DoIT’s website if there are any questions about the translated content.

DoIT uses Google Translate to provide language translations of its content. Google Translate is a free, automated service that relies on data and technology ​​​to provide its translations. The Google Translate feature is provided for informational purposes only. Translations cannot be guaranteed as exact or without the inclusion of incorrect or inappropriate language. Google Translate is a third-party service and site users will be leaving DoIT to utilize translated content. As such, DoIT does not guarantee and does not accept responsibility for, the accuracy, reliability, or performance of this service nor the limitations provided by this service, such as the inability to translate specific files like PDFs and graphics (e.g. .jpgs, .gifs, etc.).

DoIT provides Google Translate as an online tool for its users, but DoIT does not directly endorse the website or imply that it is the only solution available to users. All site visitors may choose to use alternate tools for their translation needs. Any individuals or parties that use DoIT content in translated form, whether by Google Translate or by any other translation services, do so at their own risk. DoIT is not liable for any loss or damages arising out of, or issues related to, the use of or reliance on translated content. DoIT assumes no liability for any site visitor’s activities in connection with use of the Google Translate functionality or content.

The Google Translate service is a means by which DoIT offers translations of content and is meant solely for the convenience of non-English speaking users of the website. The translated content is provided directly and dynamically by Google; DoIT has no direct control over the translated content as it appears using this tool. Therefore, in all contexts, the English content, as directly provided by DoIT is to be held authoritative.