Cybersecurity Incident Response
It is important that Mutual be engaged immediately upon learning of a potential or confirmed cybersecurity breach. There are a series of steps that Mutual will take to help ensure that certain things are done. Below is an outline of the steps that would be included in any cybersecurity incident response.
Steps you must take:
1. Reset passwords for all affected systems, or any systems that may use the same password as the system that was affected.
2. Lock down access to all accounts within the affected systems until the extent of the breach can be determined.
3. Notify Mutual Compliance and Technology Support immediately
Steps Mutual will take with you:
4. Coordinate an audit of breached systems, in order to:
a. Ensure breach has been terminated/contained
b. Determine extent of breach
c. Determine how breach occurred
d. Determine what (if any) sensitive information was compromised
5. Disclosure to regulators/investors, if applicable
6. Remediation assessment to prevent future breaches
While this list is short, many of these steps can be quite intensive and depending on the extent of the breach may require the engagement of third-party service providers to help ensure the breach is properly addressed. Additional steps or actions may be required in certain circumstances, but the Compliance and Technology Support teams that are working with you through this process will help ensure all necessary steps are taken during the cybersecurity incident response.
If you need to notify Mutual of a potential or confirmed cybersecurity breach, please submit a case to Compliance via the Power Portal under Service Category: Cybersecurity, and then choose the relevant Case Topic that best applies to your situation. Someone from Mutual’s Compliance and/or Technology Support team will follow up with you immediately to begin coordinating the steps above.