Employee benefit plans are a common perk for many organizations. They are often seen as a necessary employee benefit, but they also come with a strong need for compliance. Specifically, ERISA-covered group health plans and retirement plans can be subject to HIPAA privacy and security laws, assurance and audit requirements and more.

Cybersecurity is often not a focus for many organizations’ employee benefit plans. After all, what would a cybercriminal want with an employee benefit plan?

soSomali