Last month, ARNECC released an updated version 6 of its Model Participation rules where section 7 strictly addresses ‘obligations regarding system security and integrity’ and explains that a Subscriber must “ensure that each of its Users has received training …including cyber security awareness training covering as a minimum:
- secure use of the ELN,
- secure use of the Subscriber’s Systems and
- secure use of email and other electronic communication.”
Since May 2020, ARNECC has recommended cyber security training after conducting a security review. The reason being that “Cyber security is of broader relevance to Subscribers and is not limited to transactions with land.”
Now ARNECC requires that in addition to the Subscriber themselves receiving training, other principals, Officers, employees, agents and contractors who access the Subscriber’s Systems must receive cyber security awareness training covering the above.
What does this mean for you and your firm?
ARNECC now mandates that firms must undertake training to protect themselves from cyber fraud. This may mean added pressure on firms, but there are solutions in place to support firms like yours to manage such requests.
How do I achieve compliance?
InfoTrack has partnered with CryptoAustralia to offer their clients complimentary Cyber Security Awareness Training. The training consists of two 30-minute online presentation modules. To complete the online training and receive certification, both training videos must be watched and the quiz for each section, completed.
By completing Cyber Security Awareness Training, you and your staff can learn more about how to identify fraud activity, how to protect yourself from hacking attempts and what to do if your computer is hacked.
For 1 CPD unit, the training can be completed anywhere at any time and covers:
- What is payment redirection fraud?
- How does payment redirection fraud work?
- How to tell if you have been hacked
- What to do if you get hacked
- What to ask your IT provider
- Cyber insurance
I’ve completed my training. What next?
Now you know what to look out for with a cyber attack and how to prevent your firm from being the victim or target of such sinister actions, the rest of your firm should too. Hackers take advantage of weak links and training your staff in a sure-fire way to strengthen your security.
InfoTrack has developed a Cyber Security Checklist that covers who in your firm needs training and what to do if you think your firm has been the victim of a cyber attack. The checklist replicates guidelines set out by ARNECC and is available for download or can be sourced on our Cyber Security Awareness Training homepage. When preparing for cyber security compliance, a subscriber or compliance officer should take the lead in completing the relevant documentation.
Cyber security is now more important than ever before, and it is crucial to use secure platforms. Cyber security scams and hacking are unfortunately on the rise, so protecting your firm’s private information and keeping your client’s data safe, goes a long way to enhancing your reputation and growing your business. InfoTrack’s suite of cloud-based products have been built for lawyers and conveyancers to use anywhere, at any time, ensuring their firms remain productive and efficient.
Find out how you can keep your firm safe from hacking: get started.