Free Self-Check · 10 Questions

Can You Pass Your Next Cyber Questionnaire?

10 yes/no questions on the controls examiners, custodians, and insurers expect from RIAs, insurance agencies, credit unions, and financial firms. Instant grade. No email required.

Question 1 of 10

01MFA is enforced on email, file storage, and any system holding client data.

02Email has DMARC enforced with impersonation protection on inbound mail.

03Workstations are encrypted (BitLocker or FileVault) and centrally enforced.

04Admin accounts are separate from daily-use accounts.

05You have written vendor due diligence on file for every provider holding NPI or client data.

06Access to client data is reviewed at least quarterly.

07Annual security awareness and phishing simulations are documented.

08A documented incident response plan includes regulator and custodian notification timelines.

09Cyber liability insurance is in force and was reviewed in the last 12 months.

10You have a Written Information Security Program (WISP) you could hand an examiner.

Want a deeper look?

A 30-minute scope call + external scan (no install) + written report is the fastest way to turn this into specific fixes.

Start a free posture report