Dealership Compliance and Risk Assessments

Automotive FTC Safeguards

Compliance

What are the Automotive FTC Safeguards?

The Legal Basics: Federal Law

Gramm-Leach-Bliley Act (“GLBA”) states:

  • Dealers are “Financial Institutions”
  • GLB Safeguards Rule – requirements to protect
  • FTC Privacy Rule – restrictions on sharing with third parties

Why the changes?

  • In response to “a series of recent high-profile breaches”
  • Increased Hill pressure
  • Most prevalent consumer complaint
  • New slate of Commissioners

New Requirements

  • Qualified Employee
  • Data Encryption
  • Secure Data Disposal Procedures
  • Overseeing/Monitoring Service Providers
  • Written Risk Assessment
  • Secure Development Practices
  • Change Management Procedures
  • Written Incident Response Plan
  • Access Controls
  • Multi-Factor Authentication
  • Unauthorized Activity Monitoring
  • Annual Reporting to Board
  • Data and Systems Inventory
  • Systems Monitoring and Logging
  • Intrusion Detection/Vulnerability Testing

Dealership Cybersecurity Services

Simplifying the Security Stack

Asset Discovery

Know who and what is connected to your environment

Vulerability Assessment

Know where the vulnerabilities are on your assets to avoid compromise

Intrusion Detection

Know when suspicious activities happen in your environment

Endpoint Detection and Response

Continously monitor your endpoints in the cloud and on premises to detect threats and changes to crticial files

Behavioral Monitoring

Identify suspicious behavior and potentially compromised systems

SIEM & Log Management

Correlate and analyze security event data from across your network and respond

Security & Compliance Reporting

Pre-built, customizable reports for regulation standards and compliance frameworks

What’s in a Managed Security Solution?

Managed security services includes monitoring and management of your security systems and devices. An MSSP manages your Security Incident and Event Management (SIEM) tools, Intrusion Detection Systems/Intrusion Prevention Systems, firewalls, anti-virus and more.  Our managed security solution is a fixed monthly cost, which includes an enterprise-grade Watchguard firewall and Crowdstrike.

If you’re using an outdated firewall, or even worse yet, the modem supplied by your ISP, contact us today to receive information on how a modern, enterprise-grade firewall can better protect your network. Contact us today at (813) 549-5700 to schedule a FREE network assessment.