Now is the time to proactively protect your club’s cybersecurity. To assist club members design an effective strategy, HFTP partnered with the National Club Association (NCA) to develop a detailed report on data and network security. Just released, “Comprehensive Practices in Club Cybersecurity” is a full-range report that helps club leadership identify cybersecurity risks, data regulation review, the tools to protect against cyberthreats, IT governance best practices, and response guidance in case of a breach. This report was developed with oversight from our experienced Cybersecurity Advisory Committee of club IT experts and consultants, and the informative content produced by many contributing authors who have worked closely with HFTP and NCA to share their knowledge and expertise so that our club members can better protect their club’s data, members, staff and operations from the intrusion and attacks of outside forces.
Introduction to the Report
This report defines the type of cybercriminal threats posed to your club and will help your club identify and address the risks of data breaches and cyberattacks. The warning signs in the business community and hospitality industries are there — and it is up to club leaders to take action to protect against security breaches, loss of confidential membership data and lawsuits. Unfortunately, many hear the warnings, but do not take the necessary steps to protect their environment until it is too late, leading many to call for specialized help after a security breach.
Given the types of personal data that clubs often retain in their records, there is a growing level of risk from cybersecurity attacks that need to be addressed in the areas of technology security, risk management and crisis communications. Cybersecurity is also a specific concern for private clubs, due to the exclusive nature of these clubs in attracting members who are high value targets for cybercriminals.
While we may understand the looming threat to our organizations, building an effective defense can be a budgetary challenge, especially for smaller clubs with minimal IT departments. Outlined in the report are cost-effective cybersecurity strategies that line up with legislative guidelines and which diligently protect members, staff and club data.
Securing the club’s environment is essential to preserving the reputation, name and integrity of the club. It also helps protect the club against potential loss of membership and adds protections for information security liability. This report is a comprehensive initiative to inform the club industry on protecting their cyber assets.
This document has been structured so that clubs can implement practical recommendations from the different sections to improve their overall cybersecurity health, manage data according to the latest regulations, and incorporate new technology tools to prevent, detect and respond to potential cyber incidents and breaches. You will find sample policies and correspondence to help you build a comprehensive set of IT policies at your own club. There are also case studies that provide insights into a club’s cybersecurity health evaluation, as well as an installation project of private club security systems.
What the Report Covers
- Understand the risks to your club for cybersecurity incidents and breaches, including hacking, malware and ransomware.
- Learn how to take an inventory of your data, including the types of data files to safeguard and types of backup plans.
- Get an update on important data security regulations and compliance.
- Explore best practices in IT governance, straight from a club IT solution provider, including detailed IT policies for passwords, email systems, data backups, firewalls and web blocking.
- Develop a comprehensive risk management plan using guidelines provided in the report.
- Explore various data protection tools to help detect intruders and unauthorized access to avoid facing a cybersecurity breach.
- Get some tips for post-event response and recovery in the event a breach actually happens.
- Review some valuable case studies, including an evaluation of a club’s cybersecurity health, as well as a club’s security camera project overview.
How to Access the Report
The publication is available to HFTP and NCA members only and can be downloaded through each association’s website. Access the report on the HFTP website today. (Please note: you must be an active HFTP member and logged into the HFTP website in order to access. Not a member? Find out how you can join.)
Attend a Supplemental, Three-Part Webinar Series in January
In addition, the two associations will partner on a three-part webinar series in January 2022 which will supplement the information detailed in the report:
- IT Governance: It All Starts with the Club’s IT Cybersecurity Committee
Thursday, January 13, 2022, at 2:00 p.m. US EST (1:00 p.m. US CST)
Presented by: Noel Wixsom, Founder, CC Tech
- Protecting Your Members’ Data
Thursday, January 20, 2022, at 2:00 p.m. US EST (1:00 p.m. US CST)
Presented by: Noel Wixsom, Founder, CC Tech and Matthew O’Dell, Partner, Condon O’Meara McGinty Donnelly LLP
- Club Cybersecurity Best Practices: Techniques to Help Maintain a Club’s Security Health
Thursday, January 27, 2022, at 2:00 p.m. US EST (1:00 p.m. US CST)
Presented by: Bill Boothe, President/Owner, The Boothe Group LLC