The Cyber Threat: Protecting Your Business

Are you doing enough to protect your manufacturing business from a cyber-attack? As more and more manufacturers deal with cyber incidents, including ransomware, it’s clear the cyber threat is now a top concern for the industry. In this article you’ll hear from some cyber experts brought together for a recent GJM Manufacturing Financial Executive Roundtable event. GJM manufacturing team lead Wes Beham hosted the gathering, while GJM’s Reid Mankowski moderated the panel discussion: “The Cyber Threat: Protecting Your Business.”  Read on to learn what our expert panelists say you should be doing to protect your business, as well as some areas of risk you may not have considered.

Threats

Dr. Loren Wagner is Director of Risk & Technical Services at CentraComm, a company that helps businesses determine their risk of a cyber-attack. Wagner says the cyber threats out there remain ominous. He cites the SolarWinds hack in early 2020 as an example of the damage a “supply chain”-related hack can do. SolarWinds is a software company that provides IT management and monitoring services. The hackers in the SolarWinds incident added harmful code to the SolarWinds software system. When SolarWinds then sent out software updates to its customers, that hacked code was included, giving the cyber criminals access to IT infrastructure at those companies. The hacks went undetected for months. Some top US officials believe the hackers were Russian.

But Wagner says threats don’t always come from afar. They can originate much closer to home and he says you can’t rule out an internal hack, perhaps from a disgruntled employee. Nation-state hackers and organized crime can be responsible as well. He says they’re very good at what they do, and these types of threats are increasingly common.

A Changing Landscape

Wagner was joined on the GJM roundtable panel by Alex Clark, VP and Cyber Risk Leader for Hylant. Clark says it’s incredible when you consider how the cyber landscape has changed. He says ransomware now accounts for about half of the cyber insurance claims they’re seeing.

“Cyber bad actors are getting more creative."

Clark says these "bad actors" are attacking operational functions once they access a company’s infrastructure. “Businesses need to start asking more questions to make sure they’re protected.” Clark says he’s seeing an increase in ransomware attacks in which the hackers not only lock down the business for ransom, but also steal company data.

What can you do right now to protect your business, and what questions should you be asking? Here’s what our panelists say you need to consider:

  • Do you have your IT/security team at the executive table for the conversation about cybersecurity? They need to be there
  • Try to think down the road to stay ahead of these criminals
  • Look at your peers. Are you where you should be with policies/protections?
  • How proactive are you being with your security measures?
  • Do you have an incident response plan? Have you tested that response plan?
  • What does your backup system look like? Where is that backup system?

Corey Kaemming says The Andersons has done some tests in which they hired people to try to break into their system and see if they could get in. Kaemming, also a panel member, is Senior Manager of Information Security at The Andersons. Another test, he says, involved letting an individual gain access to their system and seeing how far they could get and what information they could access.

The panelists all agreed that preparation helps a company understand its limitations. Kaemming says The Andersons has documented its response plan and will practice it on a regular basis. Clark also urged attendees to take advantage of resources their insurance carriers offer to help mitigate their risk.

Here are some other key items panelists say all executives should keep in mind:

  • Multifactor authentication for emails
  • Ensure you have system backups in place and that you test them regularly
  • Software “patching” in place where it needs to be. For example: you patch Microsoft, but Adobe may not get patched
  • Employee awareness and training is critical. They need a clear understanding. Do a periodic vulnerability assessment
  • Don’t forget to secure “end of life” software: old, abandoned versions of software still out there
  • Do scans at least two times a year, more if you have a lot of change going on
  • Cyber insurance: No longer a blanket approach. Find the right fit for you. Several carriers cater to middle market businesses
  • Cell phones: another risk. Are personal devices included in your cyber policy?
  • Revisit policies around your cyber policy. For example, your acceptable use policy
  • Once you’ve had a claim there will be heightened scrutiny from insurance underwriters
  • Just because you’ve had a claim that doesn’t make you uninsurable

Cathy Witte from CIFT/Ohio Manufacturing Extension Partnership (MEP) also spoke to attendees, offering details on a funding opportunity for cyber projects available through the MEP. Manufacturers looking to learn more are encouraged to call 419-535-6000, ext. 142, or go to ciftinnovation.org.

The cyber threats that exist today are ever-present and everchanging. Be sure your business is ready.

GJM’s Risk Advisory offerings include a team of specialists who work with many different types of businesses to determine and manage cyber risk. Learn more about our Risk Advisory Services.

Established in 1996, Gilmore Jasion Mahler, LTD (GJM) is the largest public accounting firm in Northwest Ohio, with offices in Maumee and Findlay. Locally owned, GJM offers cloud-based accounting and provides comprehensive services including assurance, business & transaction advisory, healthcare management advisory, outsourced accounting, and risk advisory. The firm’s professionals specialize in industries including construction & real estate, healthcare, manufacturing & distribution, nonprofit, private equity and utilities.

LinkedIn share
Twitter share

Area Businesses Should Prepare Now for Sales Tax Increase

Toledo-area businesses in Lucas County and the city of Rossford need to be ready for a sales & use tax increase that takes effect on April 1, 2022. According to the Ohio Department of Taxation, the .5% increase enacted by the Toledo Area Regional Transit Authority (TARTA) will raise the sales tax rate in Lucas County from 7.25% to 7.75%, and in the city of Rossford from 6.75% to 7.25%. The increase does not apply to all of Wood County.

While such increases aren’t uncommon, we are sharing this as an important reminder, as the rate change will likely impact many GJM clients, and it’s important that the appropriate members of your team are aware of the need to charge a different rate effective April 1, 2022.

“Sales tax is one of those taxes small businesses can struggle with,” says GJM Tax Manager Matt Alic, who specializes in state and local tax. “It can be a complicated area for tax, though this is a fairly straightforward change. Businesses will want to be sure to make the necessary changes moving forward.”

Should you have any questions or concerns about the rate change and how it impacts your business, please reach out to your GJM team for guidance. You can also learn more at the Ohio Department of Taxation website.

Established in 1996, Gilmore Jasion Mahler, LTD (GJM) is the largest public accounting firm in Northwest Ohio, with offices in Maumee and Findlay. Locally owned, GJM offers cloud-based accounting and provides comprehensive services including assurance, business & transaction advisory, healthcare management & advisory, outsourced accounting, and risk advisory. The firm’s professionals specialize in industries including construction & real estate, healthcare, manufacturing & distribution, nonprofit, private equity and utilities.

 

LinkedIn share
Twitter share

A Conversation with New GJM Partner Ryan Leininger

We had a chance for a sit down with GJM's Ryan Leininger shortly after he came on board with the firm. Enjoy this video conversation, and learn more about his areas of specialty and professional history.

Established in 1996, Gilmore Jasion Mahler, LTD (GJM) is the largest public accounting firm in Northwest Ohio, with offices in Maumee and Findlay. Locally owned, GJM offers cloud-based accounting and provides comprehensive services including assurance, business & transaction advisory, healthcare management & advisory, outsourced accounting, and risk advisory. The firm’s professionals specialize in industries including construction & real estate, healthcare, manufacturing & distribution, nonprofit, private equity and utilities.

LinkedIn share
Twitter share

GJM Staff Share CPA Exam Tips


Studying for the CPA exam takes dedication, determination and a great deal of your time. If you're struggling to get it done, here's a fun and helpful video that offers up some suggestions from some GJM staff who've recently passed the exam. 

Established in 1996, Gilmore Jasion Mahler, LTD (GJM) is the largest public accounting firm in Northwest Ohio, with offices in Maumee and Findlay. Locally owned, GJM offers cloud-based accounting and provides comprehensive services including assurance, business & transaction advisory, healthcare management advisory, outsourced accounting, and risk advisory. The firm’s professionals specialize in industries including construction & real estate, healthcare, manufacturing & distribution, nonprofit, private equity and utilities.  

LinkedIn share
Twitter share

GJM Announces New Partner, Several Promotions and New Team Members

Gilmore Jasion Mahler, LTD (GJM) is pleased to announce the addition of a new partner, several staff promotions, and some additional new team members in recent weeks.

Ryan Leininger, CPA, CVA recently joined the firm as a consulting and assurance partner. Ryan is a graduate of Defiance College, where he received his undergraduate degree. He obtained his master’s in accountancy from Bowling Green State University and brings to his leadership role over 16 years of experience in public accounting. His areas of specialization include construction & real estate and manufacturing & distribution. Ryan is also a Certified Valuation Analyst (CVA).

Other staff promotions, effective January 1, 2022 include:

Heidi Ferguson, CPA promoted to tax senior manager, Alex Spieker, CPA promoted to assurance senior manager, Ben Lochbihler, CPA promoted to senior manager, Dana Lumbrezer, CPA promoted to assurance manager, Kim Rodriguez, CPA promoted to tax manager, Tim Merkel promoted to IT manager and Travis Reamsnyder, CPA promoted to tax supervisor.

New team members in recent weeks include Charlie Kettinger, assurance senior associate, Shelby Lashaway, administrative associate, Lindsey Stoots, administrative associate, and several tax team members including:

Matthew Alic, CPA, tax manager

Shobhana Govindarajan, senior associate

Arlena McDaniel, EA, senior associate

Dana Frost, senior associate

Robin Maas, associate   

“To those just joining the firm: Welcome to the GJM team. I’m also very pleased to see so many of our valued team members grow in their roles within the firm,” says GJM Managing Partner Kevin Gilmore.    

There are currently several opportunities at GJM for those just beginning their careers, and for more experienced professionals in tax, assurance, and risk advisory. Learn more at GJMLTD.com/careers.

Established in 1996, Gilmore Jasion Mahler, LTD (GJM) is the largest public accounting firm in Northwest Ohio, with offices in Maumee and Findlay. Locally owned, GJM offers cloud-based accounting and provides comprehensive services including assurance, business & transaction advisory, healthcare management advisory, outsourced accounting, and risk advisory. The firm’s professionals specialize in industries including construction & real estate, healthcare, manufacturing & distribution, nonprofit, private equity and utilities.


LinkedIn share
Twitter share
Navigation Opened. Press tab to navigate the menu.