CORSA now provides Cyber Coverage as part of our regular program. If you are a CORSA member then you may be aware that we have formed a "Cyber Panel". The panel is composed of IT experts from our membership and CORSA staff; the panel has created a CORSA Model Cyber Policy and a Cyber Best Practices document. We also held cyber training seminars in four locations throughout the state this fall. CORSA members can access the model policy and best practices document (as well as many other Risk Management/Loss Control materials and tools) on our website: http://www.corsa.org/ This link is to a very interesting article on turning a blind-eye on your IT/Cyber risks and the ramifications of a cyber breach. It is not specifically for public entities, but the risk is the same, private or public. http://claims-management.theclm.org/home/article/What-You-Risk-by-Not-Detect... The following is extracted from the article: "In June 2015, the federal government's Office of Personnel Management (OPM) announced that the personally identifiable information of more than four million federal government employees had been breached in December 2014. The compromise of the department's systems was not discovered until April 2015. The delay in discovering the breach was attributed to a failure to configure security settings as strictly as they could have been. OPM officials advised that it was adopting additional procedures to guard against remote access and expanding the use of anti-malware software across the system. In other words, when someone decided more was needed to keep the barn doors closed, it was discovered the horses were already gone." James Hale, ARM-P, ARM-E Risk Control Consultant County Risk Sharing Authority 209 East State Street Columbus, OH 43215 614.246.1630 FAX 614.220.0209