This document outlines the second component of the Cybersecure MSMEs program, which focuses on identifying cybersecurity challenges in the business sector and co-creating solutions through regional working groups.

These participatory exercises were conducted between May and November 2025, both virtually and in person, nationwide, with the support of partner Chambers of Commerce in Barranquilla, Cali, and Medellín, as these are the cities where MSMEs face the most attacks, and served as the basis for formulating public policy recommendations aimed at strengthening cybersecurity in MSMEs, as well as coordinating actors from the public and private sectors.

The objective of these guidelines is to strengthen cybersecurity for micro, small, and medium-sized enterprises in Colombia, with special attention to the economic entities most exposed to cybercrime and the most vulnerable populations within the business community. The guidelines focus on preventing and mitigating cyberattacks, protecting digital assets, and promoting safer environments for their operation and growth.

They also seek to establish a strategic roadmap to strengthen cybersecurity for MSMEs in Colombia and guide public and private action toward reducing digital divides, increasing business resilience, and consolidating capacity.