LifeStatus360 review: Lack of adequate security and cybersecurity best practices

LifeStatus360 LLC does not have the security processes, procedures, and tools in place to oversee sensitive information.

LifeStatus360 LLC administers death, and life audits for unions, pension funds, insurance, and financial groups’ Personal Identifiable Information (PII). PII data includes name, address, dob, and social security numbers (SSN). They handle and use sensitive PII data.

In 2021, the Department of Labor (DOL) created cybersecurity guidance for the plan sponsor, plan fiduciaries, record keepers, and plan participants.

If you are doing business here, protect yourself and your data. Use the DOL Cybersecurity Program Best Practices list to review and quickly assess LifeStatus360’s non-existent cybersecurity.

If they cannot answer the questions and provide proof, cancel your contract, and pull out your data.

Here are some results based on the guidelines and comparing what Life Status 360 does not have.

Security Certification - None (SOC, HIPPA, ISO

Cybersecurity Program - None

Annual Risk Assessment - None. There are no current Risk Assessment

Third-Party Annual Audit of Security Controls – None

Annual penetration Test - None

Strong Access Control procedures - Not used

Secure System Development Life Cycle Program - None

Cybersecurity Awareness program - None

The list goes on.

Compare the DOL cybersecurity guidelines and ask Life Status 360, LLC to produce certifications, copies of the processes and procedures, and the results of the audits. There are none.

Life Status 360, LLC does not have the Security Best Practices to manage your sensitive data. In the central office and especially not in the remote–home office.

View 0 more photos