Skip to main content

Cybersecurity of retirement accounts is taking center stage

Retirement plan administration has advanced in recent decades with the rise of the Internet and other digital technologies. However, that has made retirement plans a target for cyber criminals. Armed with stolen personal data, hackers now see trillions of American retirement dollars as a new favorite target.

The retirement industry has had to strengthen its defense against cyberattacks and, as a natural extension of this effort, the due diligence practices of plan sponsor fiduciaries have entered the spotlight. The U.S. Department of Labor released new cybersecurity guidance for plan sponsors in April and is already making it a priority topic of audits as DOL underscores the “obligation to ensure proper mitigation of cybersecurity risks.”

The DOL guidance includes:
  • Tips for hiring a service provider with sound cybersecurity practices: These tips include asking about the service provider’s security standards, evaluating any historical breaches or litigation and seeking favorable contract terms around cybersecurity.
  • Best practices for the cybersecurity programs of service providers: These best practices include the use of data encryption, periodic cybersecurity training and third-party audits of security controls.
  • Online security tips for plan participants: These tips include registering one's account and utilizing multi-factor authentication.
Retirement plan sponsors are strongly encouraged to incorporate cybersecurity oversight in their governance practices for the benefit of plan participants and beneficiaries. As with all good fiduciary habits, it’s important this oversight is memorialized by way of meeting minutes or other internal documentation.

Plan sponsors should understand this obligation extends not only to the cybersecurity controls of their service providers, but the organization’s own internal controls, as well. If not yet addressed, plan sponsors should prioritize a review of their internal practices and talk to their service providers about this topic.

If you would like to speak with a consultant at HANYS Benefit Services on this or any other issue, call (800) 388-1963 or email hbs@hanys.org.

Popular posts from this blog

Innovative employee retention strategies: 9 fresh ideas

Employee engagement and retention are pivotal in every sector, but they carry even more weight in the not-for-profit space, where resources are often limited. High turnover can be both costly and disruptive, impacting productivity and damaging morale. In an era of workforce evolution, to effectively retain their top talent, organizations must explore innovative employee retention strategies that go beyond conventional methods.  Engaged employees are distinguished by their higher productivity, motivation and loyalty, and they are more likely to stay with a company for the long term. Gallup recently updated its research article, The Benefits of Employee Engagement , finding that "low engagement teams typically endure turnover rates that are 18% to 43% higher than highly engaged teams."  In addition to turnover, disengaged employees negatively impact a company's financial health, with turnover costs averaging six to nine months of the departed employee's salary, accordin

Executive disability income protection program: C-suite FAQ

Implementing a comprehensive risk management strategy is imperative for C-level executives and senior management at HANYS member hospitals. One critical, but often overlooked component, is the executive disability income protection program. But what exactly is this program and why is it vital for high-income earners?   With increasing interest in executive disability income protection programs from C-suite executives, TruePlan Benefit and Retirement Advisors interviewed Bernard A. Gleeson, Director, Employee Benefit Services on Executive disability income protection programs FAQs.  What is an executive disability income protection program?  An executive disability income protection program (EDIPP) is a specialized form of disability insurance designed to supplement existing group disability plans offered by employers. These individual plans provide additional coverage beyond the typical monthly maximum benefit cap found in traditional employer-based offerings. By overlaying on top of g

Employer Q&A: What is Financial Wellness?

There is a significant gap between employees and employers regarding financial wellness programs, according to the Harvard Business Review . “80% of employees report being financially stressed. Only 28% of employers offer financial wellness programs,” the article states.   Similarly, Forbes highlights a 2023 Transamerican Institute study showing that 77% of workers consider financial wellness programs an important benefit.  With so much research on the need for these programs, what should employers do?  The first way employers can bridge this gap is to learn what financial wellness is and how it can improve an employee’s overall being. In this short Q&A, we introduce the topic and offer some essential tips to get started.  Q1: What is financial wellness?  A: Financial wellness refers to the sense of security a person feels about their financial situation in all aspects of their life. It means having control over day-to-day finances, being prepared for emergencies and having a plan