Skip to content

Cybersecurity Checklist

Are you protected from cybercrime?

Losses from cybercrime totaled $4.2 billion in 2020, according to the FBI. Take steps now to protect your organization and be ready to respond if an incident occurs.

Download our interactive checklist to help with your security planning.

    • Determine your company’s high-value assets and secure those first.
    • Stay current with operating system patches, software updates and version control.
    • Use strong, multi-character passwords and require a password change every 90 days.
    • Enact preventative security measures like multi-factor authentication (MFA) and remote access controls.
    • Implement mobile device and remote access policies for employees.
    • Train employees to recognize and respond to phishing; provide additional training to those in targeted positions (CFO, accounts payable, etc.).
    • Evaluate third-party vendor contracts for cyber coverage and appropriate data protection language.
    • Speak with vendors about their cybersecurity and data protection methods, technology and measures.
    • Confirm requests for personal information.
    • Secure check stock, cards and statements with account information.
    • Reconcile bank accounts daily and use account alerts.
    • Implement ACH blocks and filters and activate Positive Pay with your bank.
    • Consider corporate card and virtual card solutions to protect payments.
    • Segregate financial employee duties.
    • Review your insurance coverage to determine the appropriate levels needed for your organization.
    • Learn common insurance coverage language and exclusions so you know what is covered.
    • Determine which resources are available through your insurance coverage in the event of an incident.
    • Engage cyber liability carriers for assistance in preparation.
    • Develop an incident notification process and cyber incident playbook.
    • Assemble an internal team to simulate cyber incidents, such as phishing schemes and penetration (PEN) tests.
    • Develop and enact disaster recovery plans, inclusive of legal (outside counsel) and insurance notifications.
    • Report any wire fraud to your local Bureau of Investigation who will work with banks to help freeze fraudulent accounts, retrieve lost funds and stop further transfers of money to criminals.

Note: If you are requesting secure information, please log in to Online Access and use the Message Center link found under the Messages tab. The Message Center allows you to send and receive messages while keeping your identity and account information secure.