DOL Cybersecurity Tip
In this age of relying heavily on technology, it is vital to take the necessary cyber security precautions. You want to make sure that all sensitive information is highly protected. This document showcases some tips and tricks for plan sponsors.
Topics include: Security Standards, Establishing a Formal Cybersecurity Program, Using Multi-Factor Authentication, Cybersecurity Insurance, and much more.
Per the DOL, plan sponsors should ask the service provider about the following:
- Security Standards
- Security Practices
- Security Policies
- Audit Results
- Security Validation Process
- Security Levels Implemented
- Past Security Breaches
- Cybersecurity Insurance
- Cybersecurity Guarantee
Per the DOL, plan sponsors should consider the following actions:
- Establish a formal Cyber Security Program
- Conduct annual risk assessments
- Hire third party to audit security controls
- Define and assign information security roles
and responsibilities - Establish strong access control procedures
- If data stored in cloud or with third party conduct
security reviews - Conduct cyber security awareness training
- Implement secure system development life cycle
- Create effective business resiliency program
- Encrypt sensitive data
- Respond to cyber security events
Per the DOL, plan participants should consider the following actions:
- Register your account
- Regularly monitor your account
- Use strong and unique passwords
- Use multi-factor authentication
- Keep personal contact information current
- Close or delete unused accounts
- Do not use free Wi-Fi
- Beware of Phishing attacks
- Do not store login information in your email account
- Use up to date anti-virus software
- Report identify theft to your employer and the
record-keeper
CONTINUE READING RETIREMENT TIMES
READ THIS MONTH'S PARTICIPANT MEMO
IMPORTANT DISCLOSURE INFORMATION
MCF Advisors, LLC (“MCF”) is an SEC-registered investment adviser. Please remember that past performance may not be indicative of future results. Different types of investments involve varying degrees of risk, and there can be no assurance that the future performance of any specific investment, investment strategy, or product (including the investments and/or investment strategies recommended or undertaken by MCF), or any non-investment related content, made reference to directly or indirectly in this presentation will be profitable, equal any corresponding indicated historical performance level(s), be suitable for your portfolio or individual situation, or prove successful. Due to various factors, including changing market conditions and/or applicable laws, the content may no longer be reflective of current opinions or positions. Moreover, you should not assume that any discussion or information contained in this presentation serves as the receipt of, or as a substitute for, personalized investment advice from MCF. To the extent that a reader has any questions regarding the applicability of any specific issue discussed herein to his/her/its individual situation, he/she/it is encouraged to consult with the professional advisor of his/her/its choosing. MCF is neither a law firm nor a certified public accounting firm and no portion of the newsletter content should be construed as legal or accounting advice. A copy of MCF’s current written disclosure statement discussing our advisory services and fees is available upon request. If you are an MCF client, please remember to contact MCF in writing, if there are any changes in your personal/financial situation or investment objectives for the purpose of reviewing / evaluating / revising our previous recommendations and/or services. Please click here to review our full disclosure.