Cybersecurity for Financial Professionals

 

Securing today and protecting tomorrow

We understand that hackers find new ways to compromise security every day, which is why it’s so important to keep financial accounts and personal information safe from the risk of fraud, cyber threats and unauthorized activity. We work behind the scenes to prevent threats and protect your client and their employee data from known and emerging cyber risks.

Our approach to cybersecurity

With cybersecurity as a top priority, we take preventative measures to safeguard the confidentiality, integrity and availability of customer information — leveraging a 360° dynamic three-pronged approach. This high level of cybersecurity maturity is but one facet and an important component of an enterprise information security environment. By integrating several “best of breed” recommendations into a comprehensive policy, you can feel secure knowing your clients are well protected.

Orange icon of business professional

People: It starts with our highly skilled, tenured staff

  • We employ a talented team of dedicated security professionals that take advantage of the latest security awareness programs for Voya's workforce
  • Conduct continual phishing tests annually to train employees on how to avoid phishing attacks
  • Participate in global hacking competitions
Orange icon of two arrows intersecting

Process: Applying applicable regulatory requirements

  • Monitoring of daily activities, flagging potential fraudulent behaviors
  • Ongoing updates to our governance documents and processes to align to the changing compliance landscape
  • Participate in Industry Consortiums and government-sponsored organizations that helps us stay informed of security risks and trends
orange icon of gears

Technology: Protecting your data from within using advanced layers of defense

  • Utilizing a layer-of-defense approach to protect against external and internal threats
  • Deploying active threat detection and prevention protocols
  • Collaborating across the industry with proactive, real-time threat intelligence 
decorative image

Securely handling and storing your client’s data 

Voya’s robust cybersecurity and fraud prevention practices consist of multi-factor authentication (MFA), voice and fingerprint biometrics, secure emails, time logoffs and more. Our applicable regulatory requirements also align with many audits and certifications. Voya achieved compliance with ISO 27001 internationally recognized security standards, and we continue to maintain ISO compliance and annual revalidation from third-party assessors. 1

  • SOC 1 & SOC 2
  • ISO27001
  • PCI DSS
  • HITRUST

Advanced fraud prevention and detection

A successful fraud prevention and detection program requires commitment of resources, which is why we use a variety of tools to prevent, detect and investigate potential fraud. Our Compliance, Corporate Special Investigations (CSI), Technology Risk and Security Management (TRSM), and Operations teams have partnered to prevent, detect and investigate suspected fraud.

Voya’s S.A.F.E. Guarantee®

As part of our secure efforts, we have established the Voya S.A.F.E.® (Secure Accounts for Everyone) Guarantee. If any assets are taken from an employee’s retirement plan account or Voya-administered Individual Retirement Account due to unauthorized activity, and through no fault of your own, we will restore the value of their account.

Read More About Voya’s S.A.F.E. Guarantee

Ethisphere World's Most Ethical Companies 2014-2024

Protection with the highest integrity

For the 11th consecutive year, Voya has been recognized by Ethisphere®, a global leader in defining and advancing the standards of ethical business practices, as one of the 2024 World’s Most Ethical Companies®.2 This honor represents our commitment to our customers.

Voya’s Awards and Recognitions

Security threat FAQs

Description

How can my client protect their employees’ accounts against scams?

Details

Your client can have their employees participate in yearly security education training and provide additional resources on tips for preventing identity theft. Visit our security page about protecting accounts and share these best practices with your clients to help keep accounts and personal information safe. 

Description

What should my client do if fraud is suspected?

Details

Along with your client’s organizational privacy and security process, these tips about what to do following a data breach may be helpful to share to ensure your client’s employees know what to do once an event has occurred. 

Description

How can my client follow the proper precautions for email safety?

Details

Business Email Compromise is a scam when a cyber-criminal compromises email accounts of victims to send fraudulent payment instructions and/or uses email to impersonate a business executive to access W2 information, and/or steal data. Learn how your client can prevent an email scam by following a few steps.

1 The audits and certifications noted apply to specific Voya scopes respective to contract obligations and industry requirements based on the type of data processed. 

2 In March 2024, Voya Financial was one of 136 companies recognized by Ethisphere® as one of the 2024 World’s Most Ethical Companies® based on performance in 2023. The World’s Most Ethical Companies assessment is based upon Ethisphere’s Ethics Quotient® framework, which offers a quantitative way to assess a company’s performance in an objective, consistent and standardized way. The information collected provides a comprehensive sampling of definitive criteria of core competencies, rather than all aspects of corporate governance, risk, sustainability, compliance and ethics. Scores are generated in five key categories and provided to all companies that participate in the process: ethics and compliance program (35%), culture of ethics (20%), environmental and societal impact (20%), governance (20%), and third-party management (5%). While Voya’s Senior Vice President of Corporate and Organizational Development sits on Ethisphere’s Equity and Social Justice Initiative Advisory Council, he plays no role in the selection process for the World’s Most Ethical Companies award, but this fact has been disclosed to the extent it may be perceived as a possible conflict of interest. There is a processing fee of $3,500 USD to participate. Voya also pays $19,500 USD a year to participate in Ethisphere’s Business Ethics Leadership Alliance (“BELA”), which provides additional resources and services to members, including benchmarking data and related Ethisphere insights and guidance. There is also a $35,000 USD licensing fee for use of the logo. “World’s Most Ethical Companies” and “Ethisphere” names and marks are registered trademarks of Ethisphere LLC.

CN3363947_0226