Featured Jobs
|
Defined Benefit Specialist II or III Nova 401(k) Associates
|
|
July Business Services
|
|
The Pension Source
|
|
BPAS
|
|
BPAS
|
|
Retirement Combo Plan Administrator Heritage Pension Advisors, Inc.
|
|
Compensation Strategies Group, Ltd.
|
|
EPIC RPS
|
|
Distributions Processor - Qualified Retirement Plans Anchor 3(16) Fiduciary Solutions, LLC
|
|
Merkley Retirement Consultants
|
|
Nova 401(k) Associates
|
Free Newsletters
“BenefitsLink continues to be the most valuable resource we have at the firm.”
-- An attorney subscriber
|
|
Press Releases by Date | Press Releases by Company Name
View More Press Releases by Multnomah Group
|
Press Release New Fiduciary Training Resource: Cybersecurity Best Practices |
|
Issued by Multnomah Group July 30, 2024 |
|
Cybersecurity threats are more frequent in today’s market than ever before. Data protection is critical, whether in the technology sector, the retail industry, or even the financial and consulting field. We have created a Fiduciary Training resource that covers the Employee Benefits Security Administration’s (EBSA) recommended best practices for successfully managing retirement plan security. Following this guidance gives more assurance that fiduciary duties will be fulfilled more effectively and that the privacy of participant data is kept intact. The EBSA guidelines are as follows: Cybersecurity Program Fundamentals Create a well-designed program that includes the internal and external risks associated with IT infrastructure and plan data security. One must also define the security roles to ensure qualified people run the system. Risk Assessment and Third-Party Audits Schedule and perform annual risk evaluations to locate potential cybersecurity threats and verify that the program’s measures are current and effective. Additionally, including third-party audits can help identify hidden vulnerabilities and document corrections for weaknesses discovered over time. Access Control and Data Protection Use strong access control measures to guarantee that authorized users have sole access to confidential information. Data encryption is also needed to protect the privacy and integrity of participant data. Third-Part Service Provider Management Ensure all data managed by a third-party organization or stored in the cloud is protected through intense security reviews and independent evaluations. Validate and QA Administer, at minimum, annual training for all firm members, updating the program to reveal the latest risks identified through assessment. This can also address identity theft and fraud prevention. Incident Response and Business Resiliency Devise a strong incident response plan to prepare for potential cybersecurity attacks. This plan will involve notifying law enforcement and affected parties when applicable. Moreover, an organization's defense program should be instituted to address business continuity, disaster recovery, and incident response, ensuring the plan is annually tested. You can download our full Fiduciary Training on this topic here. |
View More Press Releases by Multnomah Group
|
Editor's note: This press release has been issued by the company named above, not BenefitsLink. Reliance on information in this press release might be prudent only after an independent review of its accuracy, completeness, efficacy, and timeliness. Reference to any specific commercial product, process, or service by trade name, trademark, service mark, manufacturer, or otherwise does not constitute or imply endorsement, recommendation, or favoring by BenefitsLink. |