Some agencies hold large amounts of client data, employee data, or other sensitive material on their website or internet-connected servers. These are often the result of functional improvements to a site and to agency services, yet they can produce staggering vulnerabilities resulting in increased liability and an uptick in cyber threats. Agencies who store only small amounts of this data may think that they are not at risk, but this is a significant error. Even the most basic website contains some sensitive data, and, perhaps more relevant – every insurance agency website represents the company that created it.
Malevolent actors sometimes hack into servers to gain access to valuable information. Other times they are merely cyber vandals, leaving your website unprofessional and defaced. Still others simply wish to hold your website hostage until you pay a ransom. Protecting your website helps control risk, control costs, and produce superior results for employees and clients. A more secure website won’t get you more business – it will prevent you from losing business, and potentially losing everything. But where do you begin?
Older websites are often built on architecture that is no longer compatible with modern cyber security standards. If your insurance agency website is more than 3 years old, you should strongly consider updating it. If it’s more than 5 years old, it’s almost guaranteed to be vulnerable. Once modern site architecture is in place, it’s important to assess your firewall. Do you firewall at the device level, at the network level, or are your firewalls living on a third-party web server? Are you using multi-factor authentication for client and employee logins? Do you differentiate user permissions? Are you limiting access by geography or other user data?
There are many choices to be made when it comes to building a secure insurance agency website – these are just a few. If you’re not sure of the answers to these questions, ask your team. If you’re still not sure, ask ours. We’re experts in agency cyber security and secure website development, and we’re here to help.