Cybersecurity Webinar Recap: A Behavioral Science Approach to Cybersecurity for Public Employee Pension Systems
As threats to data and financial security grow more sophisticated, TEXPERS stepped up with a powerful new resource for its members. On Oct. 29, 2024, the Association hosted an eye-opening webinar titled "A Whole Lotta BS (Behavioral Science) About Cybersecurity." The session, led by National Cybersecurity Alliances Executive Director Lisa Plaggemier, offered trustees and administrators practical, science-backed strategies to strengthen cybersecurity measures across Texas' public pension systems.
Key Takeaways from the Session
Understanding Cybersecurity Behaviors
Lisa Plaggemier emphasized that while many in the public employee retirement system understand the importance of cybersecurity, the task can feel overwhelming. Using the COM-B behavioral science model, Plaggemier addressed how Capability (knowledge), Opportunity (tools like multi-factor authentication), and Motivation (the will to maintain best practices) are vital to a secure environment.
Practical Strategies for Trustees and Administrators
- Long, Strong Passwords: Plaggemier recommended adopting long, complex passphrases (15+ characters) for robust security and suggested using password managers to help trustees and staff maintain strong passwords without the hassle.
- Recognizing Phishing Attempts: Although attendees expressed confidence in identifying phishing emails, Plaggemier cautioned against overconfidence. She highlighted that phishing tactics are now more sophisticated, often mimicking trusted senders to catch recipients off guard.
- Multi-Factor Authentication (MFA): Enabling MFA across all critical accounts was another key recommendation. While MFA is standard for financial accounts, the NCA encourages its use on all essential personal accounts, including email and social media, to further reduce cyber risks.
- System Updates and Data Backups: Regular updates and data backups were emphasized as critical practices. Plaggemier encouraged administrators to extend these habits to home devices and routers, protecting all potential points of entry from cybercriminals.
- Responsible Use of AI Tools: With 38% of the NCA's survey participants reporting they entered sensitive information into AI tools without employer approval, Plaggemier reminded everyone to follow organizational policies regarding AI use to avoid unintended data exposure.
Watch the Entire Session
Why This Matters
Allen Jones, TEXPERS Director of Communications, highlighted the importance of proactive cybersecurity measures with examples of recent breaches affecting institutions like JP Morgan and the California Public Employees' Retirement System, where retiree and beneficiary data were compromised. TEXPERS aims to protect public employees' financial futures against evolving cyber threats by implementing critical security practices and raising awareness during Cybersecurity Awareness Month.
TEXPERS appreciates all who attended this informative session and invites Association members to contact Jones at [email protected] for additional guidance on strengthening cybersecurity practices.
Please visit the National Cybersecurity Alliance's Stay Safe Online for resources on keeping systems secure.
A Champion for Cybersecurity
TEXPERS is proud to have become a NCA Champion, joining an international movement to promote online safety and empower individuals to protect their personal and financial data from cyber threats. Throughout October—Cybersecurity Awareness Month—TEXPERS actively engaged its membership to support the initiative's theme, "Secure Our World." The Association offered educational resources, and the webinar focused on the foundational cybersecurity practices.
About the Author:Allen Jones is the director of communications and event marketing for TEXPERS. He joined the Association in 2017. Before TEXPERS, he worked in the news media industry, producing content for newspapers, magazines, and online publications and leading newsrooms as an editor and publications manager. [email protected]