Skip to main content
Dashlane Logo

Celebrating IT Heroes at Small Businesses: How They’ve Created a Strong Cybersecurity Culture, and Why That Matters

Originally published:|Last updated:|Dashlane

Small and medium-sized businesses (SMBs) have a unique opportunity to build close relationships with their clientele, customers, and employees—but relationships need trust. Companies are expected to protect every stakeholder’s data, but strong cybersecurity takes a village. We asked IT heroes from SMBs how they think about cybersecurity and why a strong password manager has become such an integral part of their strategy. 

The Panel

Ben Leibert
Technical Manager, VillageReach
Elspeth Moffatt,
Director of Communications, CSG
Chelsea Richardson,
Principal, Vice President, JD+A
Heather Hankins
Security Specialist, NETA
Ben Silver,
Manager of IT Support, BentoBox
Jeff Marmins 
CEO, SolarQuote
Joe McLain,
CIO, Buena Vista University
Carissa Tilford,
Director of Operations, JD+A
Steven Stanley
Senior Vice President of Technology, ePromos

Not pictured:

  • Megan Rose, Technology Manager, KHM Travel
  • Gabe Kimbrough, Chief Information Security Officer, Mercy Medical Cedar Rapids
  • Eric Hyyppa, President, NETA

Here’s what they told us:

Q: Why is strong cybersecurity important for the success of your business?

“Our strongest tools are our reputation and relationships. A breach could do more than take our security; it could remove the trust from our name that we’ve worked so hard to build.”

— Chelsea Richardson, Principal, Vice President at JD+A

“All it would have taken was one email to be intercepted or for someone to get into our building and find sticky notes with passwords, and our entire network and data would have been compromised.”

—Steven Stanley, Senior VP of Technology, ePromos

“Security has always been a priority, but when we noticed several [hacking] attempts, we wanted to make sure that it would be extremely difficult for any unauthorized person to get access to our servers or systems.”

—Elspeth Moffatt, Director of Communications, CSG

“Just like many other organizations, both big and small, we’ve been targeted and breached in various ways. We've seen firsthand that cybersecurity risks are real.”

—Ben Leibert, Technical Manager, VillageReach

Q: What did access look like at your organization before finding the right password manager? 

“As we began refreshing our passwords, people without formal permission to access the associated services began reaching out to let us know they could no longer login to them. It was alarming to see the degree of shadow IT. If you don’t thoughtfully govern your passwords, you may quickly lose insight into who has access to them.”

—Ben Leibert, Technical Manager, VillageReach

“Not having access to the correct passwords was concerning, and it could have impeded our ability to do business. We had to have the right password management policies and technology in place before we could scale.”

Jeff Marmins, CEO, SolarQuote

“We have accounts with 20-plus preferred suppliers. Whenever a password change would happen, it would be pretty disruptive.”

—Megan Rose, Technology Manager, KHM Travel

“In 2020, credential stuffing sky-rocketed. Everyone was so busy that passwords were being reused and the passwords in use were too simple. We needed to do something.”

—Heather Hankins, Security Specialist, NETA

“We grew really quickly, and maintaining strong security practices was hard. We have a startup culture, where processes aren't always as defined, which adds to the challenge.”

—Ben Silver, Manager of IT Support, BentoBox

“Not having access to the correct passwords was concerning, and it could have impeded our ability to do business. We had to have the right password management policies and technology in place before we could scale.”

—Joe McLain, CIO at Buena Vista University

Want to learn more about using a password manager for your business?

Check out Dashlane's business plans or get started with a free business trial.

Q: How do you cultivate a culture of cybersecurity?

“We want to bring awareness, but we don't want to hassle people. Instead, we talk to people about how they can better protect themselves or their families, which gets them interested in cybersecurity."

—Joe McLain, CIO at Buena Vista University

“Our security team can now act as a partner instead of an enforcer. Employees no longer view password security as a hindrance, but as a help. Dashlane helped us make password management a positive experience.”

—Gabe Kimbrough, Chief Information Security Officer at Mercy Medical Cedar Rapids

“Getting Dashlane spring-boarded us into security awareness. I ended up forming a committee at our company because we didn’t have anyone dedicated to security.”

—Megan Rose, Technology Manager, KHM Travel

Q: What tips and tricks have you used to push cybersecurity forward at your business? 

“We created primary groups, but also have subdivisions based on how teams are structured and each team’s needs. For example, some subdivisions give access to consultants.”

—Ben Silver, Manager of IT Support, BentoBox

“We incentivize people by offering to waive 30/60/90 password change mandates if they utilize Dashlane."

—Joe McLain, CIO at Buena Vista University

“I regularly book travel arrangements for our employees. Before, we had travel spreadsheets that included a lot of private information. Now, it’s in Dashlane so people can securely share it with me."

— Chelsea Richardson, Principal, Vice President at JD+A

“As long as we introduce Dashlane on day one, we can introduce other platforms without worrying about access. The password process is just built-in."

—Elspeth Moffatt, Director of Communications, CSG

Q: For you, what sets Dashlane apart from other password manager solutions? 

“Some password management systems are overwhelming to a person who isn’t tech-savvy, but Dashlane was user-friendly from first glance. We love its simple look and feel."

—Eric Hyyppa, President, NETA

“The biggest benefit of Dashlane is the ability to look at my company’s password health overall because it highlights compromised passwords."

—Steven Stanley, Senior VP of Technology, ePromos

“I’d tried a few other password management solutions, but I didn’t like them. Dashlane offers numerous options without forcing mechanics, allowing for endless interpretations and creativity.”

—Ben Silver, Manager of IT Support, BentoBox

“The security team was drawn to the solution because it was easy to see how Dashlane would have a positive impact on our employees.”

—Gabe Kimbrough, Chief Information Security Officer at Mercy Medical Cedar Rapids

“People are competitive with themselves on their security scores. It’s like they understand what’s important and they just do it on their own. It’s empowering.”

—Megan Rose, Technology Manager, KHM Travel

“Dashlane is the linchpin in our tech stack and helps us maneuver smoothly throughout the day. Whether we’re accessing applications from our desktop or a mobile device, Dashlane provides us with consistency.”

——Jeff Marmins, CEO, SolarQuote

Don’t buy into the myth that your business is too small to get hacked. SMBs make up half of the total victims of cybersecurity attacks. Poor password habits, frustrating user experiences with security tools, and lack of training to identify phishing scams all lead to security breaches.  

The key to pushing cybersecurity forward at any organization, large or small, remote or in-person, is cultivating a strong culture of security. 

Investing in a tool like Dashlane and encouraging your employees to be part of the organization’s security initiatives can eliminate future pain. 

Want to learn more about how you can help your organization push cybersecurity forward? Check out our Definitive Guide to Password Management for Small Businesses.


Special thanks to the Dashlane admins who helped us answer these questions and have shared their cybersecurity journeys with us.

Sign up to receive news and updates about Dashlane