August 24, 2021
DOL Cybersecurity Guidance and Audit Initiative
DOL Cybersecurity Guidance
The U.S. Department of Labor (DOL) recently issued cybersecurity guidance for retirement plans for the first time, which consisted of the following: (i) Cybersecurity Program Best Practices; (ii) Tips for Hiring a Service Provider; and (iii) Online Security Tips. The DOL has already started reviewing the cybersecurity programs of ERISA plan sponsors and fiduciaries as part of a new audit initiative. This newsletter provides highlights of the DOL’s cybersecurity guidance and audit initiative, and provides recommended next steps for plan sponsors and fiduciaries in light of the uptick in cybersecurity inquiries by the DOL and recent incidences involving cybersecurity breaches of benefit plan data.