Skip to content

DOL Cybersecurity Services for ERISA Plans

Strategic guidance to protect the retirement plan assets of US employees.

Is your retirement plan protected? Cyber threats and criminals pose a growing risk to sensitive data and personal credentials. The Employee Retirement Income Security Act (ERISA) covers established retirement and welfare plans, making plan holders and their data prime targets.

As of 2026, the Department of Labor (DOL) Employee Benefits Security Administration (EBSA) added cybersecurity to its list of national enforcement projects, building on its 2021 guidance. The DOL’s updated 12 best practices guide offers protections that ERISA-qualified plan stakeholders use to mitigate risks, select qualified service providers, implement security procedures, and educate plan participants.

Contact Us

a close up of a logo

Why Do Employee Benefit Plans Have Heightened Cybersecurity Risks?

  • Significant outsourcing to third-party administrators, leading to gaps in ownership or accountability
  • Sensitive personal data is being shared electronically among providers
  • Access to large amounts of plan assets, making plans high-value targets
a group of people sitting at a table

What Should Plan Fiduciaries and Sponsors Do?

  • Review the guidance and assess how your current cybersecurity practices and your vendors’ practices compare to DOL recommendations
  • Review current service provider contracts and plan document amendments
  • Schedule fiduciary training
  • Document compliance efforts, including cybersecurity compliance training, procedures, and participant disclosure approaches

Schedule a DOL Cyber Readiness Consultation

Cybersecurity + Employee Benefit Plans

Our DOL Employee Benefit Plan Services

Our Risk & Compliance team works closely with our Pension Services Group to help plan sponsors, fiduciaries, and covered service providers evaluate DOL documentation requirements and develop strategic guidance. Our combined knowledge of cybersecurity and employee benefit plans qualifies our team to:

Assess your cybersecurity posture

Apply proper protocols

Protect plan assets

Facilitate plan compliance

Services

Services Across ERISA-Plan Parties

We offer tailored services for each party involved in an ERISA-qualified plan.

For Plan Sponsors and Fiduciaries

  • Perform cybersecurity due diligence for new service providers
  • Conduct ongoing monitoring of existing service providers

For Covered Service Providers

  • Conduct health checks, including penetration and vulnerability testing, aligned with DOL Cybersecurity Program Guidelines
  • Enhance cybersecurity controls and processes
  • Perform annual third-party reviews of security controls
  • Assess cloud security posture
  • Develop and maintain incident response protocols

Explore More Insights

a person writing on a tablet
Article

The Department of Labor’s (DOL's) Proposed Safe Harbor for Alternative Investments in 401(k) Plans

Read More
a person holding a cup of coffee
Article

DOL Cybersecurity Inquiries: Is Your Employee Benefit Plan Ready?

Read More
a pair of glasses on a notebook
Article

Is Your Employer Health Plan Next for A HIPAA Corrective Action Plan?

Read More
a close-up of a stethoscope on a table
Article

QSEHRA and Medicare: Avoiding MSP and Section 111 Pitfalls

Read More
a group of people in an office
Article

Roth Catch-Up Contributions – A Practical Deep Dive

Read More
a glass jar with coins inside
Article

Don’t Let Your Retirement Savings Disappear: Understanding Lost & Missing Participants

Read More
Article

New Defined Contribution Retirement Plan Rules for 2025-2026: What Employers Need to Know

Read More
a person working on a computer
Article

Cash Balance Plans – A Small Business Owner’s Guide to Optimal Tax Strategy and Retirement Savings

Read More
diagram
Article

Understanding Pension Fraud and How to Prevent It

Read More
a building with a parking lot
Article

Safe Harbor 401(k) Profit Sharing Plans – A Small Business Owner’s Guide to Optimal Tax Strategy and Retirement Savings

Read More
a person eating a meal at a table
Article

Can Your Cafeteria Plan Pass the Test?

Read More
a pen on a piece of paper
Article

New Executive Order Expands 401(k) Investment Opportunities

  • Tax Legislation
Read More
View All Insights

What's on Your Mind?

a person in a suit

Denise Finney

Denise Finney is the Partner-in-Charge of the Pension Services Group dedicated to employee benefit plan audits. With 15 years of public accounting experience, she specializes in assisting clients with annual audit requirements regarding employee benefit plans.

View Profile

Start a conversation with Denise