LifeStatus360 LLC does not have the security processes, procedures, and tools in place to oversee sensitive information.
LifeStatus360 LLC administers death, and life audits for unions, pension funds, insurance, and financial groups’ Personal Identifiable Information (PII). PII data includes name, address, dob, and social security numbers (SSN). They handle and use sensitive PII data.
In 2021, the Department of Labor (DOL) created cybersecurity guidance for the plan sponsor, plan fiduciaries, record keepers, and plan participants.
If you are doing business here, protect yourself and your data. Use the DOL Cybersecurity Program Best Practices list to review and quickly assess LifeStatus360’s non-existent cybersecurity.
If they cannot answer the questions and provide proof, cancel your contract, and pull out your data.
Here are some results based on the guidelines and comparing what Life Status 360 does not have.
Security Certification - None (SOC, HIPPA, ISO
Cybersecurity Program - None
Annual Risk Assessment - None. There are no current Risk Assessment
Third-Party Annual Audit of Security Controls – None
Annual penetration Test - None
Strong Access Control procedures - Not used
Secure System Development Life Cycle Program - None
Cybersecurity Awareness program - None
The list goes on.
Compare the DOL cybersecurity guidelines and ask Life Status 360, LLC to produce certifications, copies of the processes and procedures, and the results of the audits. There are none.
Life Status 360, LLC does not have the Security Best Practices to manage your sensitive data. In the central office and especially not in the remote–home office.
Desired outcome: Protect yourself & your data. Use the DOL Cybersecurity Program Best Practices list to review & measure LifeStatus360’s non-existent cybersecurity. If they cannot answer the questions or provide proof, cancel your contract. Audit them.