by Craig Rosenthal
Mar 09, 2022
The digital age has graced the 401(k) industry with its presence, gifting us with daily recordkeeping, investment tools, auto-features, e-delivery and more. But it is beginning to show another face and retirement plan advisors may be unprepared to deal with the consequences – cyberattacks.
Some of the most prevalent cybersecurity threats to retirement plans, fiduciaries and participants include:
Since retirement plan accounts contain not only assets but lots of personal data, they are a very attractive target to cyber attackers.
With 1 in 2 of all organizations encountering some sort of ransomware-related activity during 2021, cybersecurity is becoming a very real threat to companies – especially those that handle assets like 401(k) savings.[1]
Cyber insecurity is a serious problem. Only 76% of RIAs hold cyber insurance, leaving 24% unprotected in case of breach in addition to being exposed to these threats.[2] Of those with cyber insurance, the median coverage amount is only $1 million.[3] These assets and the personal information that come along with are even more vulnerable due to the numerous parties collaborating on them, from recordkeepers to payroll companies to TPAs to plan sponsors and everyone else in between.
To combat these online threats, start by asking questions. Open discussions with all of your service providers about encryption, user authentication, privacy protection and other procedures they are implementing to ensure your retirement plan client’s data is safe. Here are some great conversation starters:[4]
Look for confident, evidence-based answers from your service providers, along with clear standards, procedures and documentation.
Now that everyone’s aware of the possible threats to plan assets and data, how can advisors and employers continuously stand guard? The answer lies within a comprehensive understanding across all parties involved, from advisor to provider to participant. Everyone should complete their cybersecurity training and adhere to a best practice guide like the one below.
In today’s digital age, cybersecurity is more important than ever. Hackers are finding new ways to steal data every day, so it’s essential that your business has a plan in place to protect itself. Unfortunately, many businesses don’t have the resources or knowledge to create an effective cybersecurity strategy.
[1] “2021 Cyber Security Threat Trends – Phishing, Crypto Top the List.” Resources, Cisco Umbrella. 11 May 2021.
[2] Richard, Meredith. “2021 Ria Benchmarking Study.” Charles Schwab. July 2021.
[3] “The 2021 Fidelity RIA Benchmarking Study.” Fidelity. August 2021.
[4] “Data Privacy and Security: Key Concerns for Benefit Plans.” Groom Law Group, 28 Jan. 2022.
[5] Cybersecurity Program Best Practices – Department of Labor.
Share:
Craig is Head of Strategy and Chief Marketing Officer for Fiduciary Decisions. In this role, he is responsible for driving Product and Partnership strategy as well as the overall messaging and marketing for the firm.
Learn More
25 April, 2022
Thirty-four percent of plan sponsors are actively seeking a new advisor partner. Benchmarking your services and value will help secure your competitive advantage. Are you ready to make sure your 401(k) practice stays in the game?
21 February, 2022
Don’t let inflation chip away at your profits. Here are 6 tips to help 401k Advisors position services and demonstrate value to plan sponsor clients amid rising prices.
24 January, 2022
FDI’s Business Management Dashboard is an open architecture solution that can be integrated with many tools and services to help you streamline the management and use of your plan data and tools, gain workflow efficiencies and work from any mobile device.