As pressure to mitigate cybersecurity threats grows, CAPTRUST Chief Technology Officer Jon Meyer provides some tips on how to find out where to update policy, process, procedure, and technology to improve an organization’s digital posture.
In “Cybersecurity Strategies for the Adviser Industry,” PLANADVISER’s Lee Barney gets Meyer’s view on what retirement plan advisors and plan sponsors should be thinking about when it comes to effective cybersecurity strategies.
Meyer says the best way for sponsors to begin evaluating an organization’s digital posture is to hire a competent security assessor to do a baseline assessment of protections and vulnerabilities.
“Frequently, people think it is just a technology issue, but the guidance shows that policies, processes, procedures, and technology all have to line up, including having multifactor authentication processes in place and training employees on what to do if they receive spam,” says Meyer.
He goes on to explain that advisory practices themselves should revisit their cybersecurity practices and protections at least once a year, noting that CAPTRUST does “penetration testing twice a year along with daily scans of our infrastructure. A lot of effort goes into this. Our standards are high.”
To read Barney’s full interview with CAPTRUST’s chief technology officer, click here.
Founded in 1997 in Raleigh, North Carolina, CAPTRUST is an independent registered investment advisor with more than 650 employees nationwide and $364 billion in client assets. An employee-owned firm, CAPTRUST provides investment advisory services to retirement plan fiduciaries, endowments, and foundations, and comprehensive wealth planning services to executives and high-net-worth individuals. CAPTRUST’s mission is to enrich the lives of its clients, colleagues, and communities through sound financial advice, integrity, and a commitment to service beyond expectation. The firm also operates the CAPTRUST Community Foundation, a charity focused on meeting the needs of underserved children.