
Your co-op takes proactive measures to protect your data and keep lights on.
You probably don’t think about data or information technology (IT) much. But cybersecurity is a never-ending job. Keeping the lights on 24/7/365 means protecting our electricity system from computer-based digital attacks. Keeping member data secure is also a top priority, especially in today’s world with tens of thousands of attempts each day from hackers to break into company networks.
These “knocks” at the cyber door can come from individuals, countries, and organizations, or from the army of automated “bots” roaming the internet worldwide, testing for weaknesses.
So how do we stay cyber-safe?
- We follow industry best practices when it comes to buying the latest software, hardware, firewalls, and other IT equipment for our office and system overall. This costs us well into the six figures each year to be prepared and maintain the latest technology, but we believe it’s key to prevent an attack rather than respond after one has already happened.
- We ensure all devices are regularly “patched” with the latest manufacturer upgrades. When updates are issued, we do not delay. We also incorporate the latest in Intrusion Detection and Prevention hardware and software.
- Every year, an outside firm conducts “penetration testing” of our IT systems to identify potential weaknesses. No hackers have been able to break though so far.
- Backup disaster recovery is enabled for our company network, and for our billing, accounting, mapping, and outage management programs. In the event of a natural disaster that destroys our building, we simply need an internet connection to get our IT networks up and running again. In the event of a cyber intrusion and the loss of data, the disaster recovery system is designed to restore our programs, data and network.
- All sensitive customer data (credit card information, social security numbers, etc) is encrypted, firewall protected, and is not stored on-site.
- Employee training is emphasized, particularly with e-mail phishing tests. These tests are made to look like real people, attempting to get them to click malicious links.
- We participated in RECAP (Rural Electric Cyber Achievement Program), a peer-led review from other cooperative IT leaders who provide an outsiders’ assessment of our cyber network. This allows us to discuss ideas with other co-ops and see what software is most effective.
- As a last resort, we have cyber security coverage from our insurance provider to help with the financial impact, should we have a cyber event.
Despite our best efforts, it is important to note that no individual or organization can guarantee 100% protection. That’s why it’s important for you, too, to be vigilant with your personal data.