Cybersecurity
- What we do
- What you can do
- Report a security issue
- Additional resources
Be SAFE at Jackson® — Security awareness for everyone
Jackson recognizes information security is an important issue and is key to maintaining the trust of our customers and financial professionals. To protect customer and business data, we've implemented an industry-standard information security program; our certified and experienced professionals strive to protect the integrity of our systems and applications. Our focus is ensuring the right controls are in place to keep your information secure. As the methods of compromising data evolve, we are committed to advancing its security to keep client and financial professional information safe.
How do we protect your information?
We apply a comprehensive set of security controls integrated with people, processes, and technology to safeguard Jackson, our clients, business partners, and financial professionals. These controls include:
People
- Associates complete required security training and engage in organization-wide awareness activities
- Industry-recognized skilled certifications necessary for security specialists and related fields
- Dedicated teams for 24/7 security monitoring, enhancements, and testing
Processes
- Due-diligence assessments of risk from third parties
- Secure software development processes
- Embedded security in operational business processes
- Comprehensive security monitoring of our infrastructure
- Continuous security updates to systems
- Strong encryption to ensure secure connections
- Security scanning of programming changes
- Regular disaster-recovery exercises
- Encrypted and physically secure data backups
- Engagement with security information-sharing networks including law enforcement and industry consortiums
- The Be SAFE program is designed to educate distribution partners and customers about information-security concerns
Technology
- Firewalls and routers configured to protect data from unauthorized access
- Monitoring, detection, and prevention of network-intrusion attempts
- Secure and redundant data centers
- Multifactor authentication for identity protection
- Continuous network scanning to identify security vulnerabilities
- Penetration testing to simulate real-world threats
- Distributed Denial-of-Service (DDoS) attack protections to block cyberattacks
- Sophisticated technologies to prevent unauthorized access to networks, systems, and data
Our security practices in action
Detection of fraudulent forms. We actively identitfy and mitigate fraudulent form submissions. Scammers often impersonate legitimate clients by using data compromised in numerous public breaches each year. Our vigilant monitoring helps protect your information from such threats.
Secure access to sensitive forms. Application forms, withdrawal and surrender forms, and other sensitive forms for contract owners are only accessible through a secure login. This precautionary measure significantly reduces the risk of fraudulent submissions, ensuring that your information remains protected.
Analyzing digital behavior. To keep your assets safe, we use sophisticated technology to analyze online behaviors and detect abnormal activity. For example, when a user logs in from an abnormal or untraceable location, or initiates an unusual transaction request, these actions can prompt an automatic account lockout followed by a thorough investigation of the potential threat.
Implementing Multifactor Authentication (MFA). MFA is a two-step verification process that confirms your login credentials on a separate device such as your phone. Setup takes minutes and is a great way to boost your account security.
Cybersecurity resources. On this webpage, you'll find helpful resources on how to keep your assets secure, report a security issue, and learn more about the processes we have in place to protect you.
Enabling voice biometrics. Clients are enrolled in Jackson VoiceGuard℠, providing an additional layer of security for account access. This feature uses voice matching to facilitate easy and fast retrieval of account information, enhancing your login protection.
Cybersecurity is a shared responsibility
In today’s world, safeguarding your personal and financial information is more important than ever. Outlined below are some common security practices that can help protect you from potential threats. By incorporating these strategies, you can enhance your digital security and enjoy greater peace of mind.
Security practices
- Plant your flag: •Claim important online accounts before a cybercriminal does it for you..
- Set up a free online account at each of the three major credit bureaus (Equifax, Experian, and TransUnion) and consider freezing your credit
- Set up online accounts at your financial institutions
- Claim your accounts with government entities such as Social Security, Medicare, IRS, and USPS
- Use strong, unique passwords: Hackers use stolen passwords to check if you have also used them on other sites. Create complex passwords for each account, using a mix of letters, numbers and special characters. Never use the same password across multiple accounts.
- Enable Multifactor Authentication (MFA): Passwords by themselves are weak. Hackers use a variety of tools that can crack weak passwords in minutes, sometimes even in seconds. Enabling MFA or two-factor authentication adds another layer of protection. In addition to a username and password, you may receive a code to a separate device, such as your phone or laptop.
- Configure security and privacy settings: Review and adjust the default settings on your accounts, apps and devices to enhance privacy and limit data sharing to only what is necessary.
- Monitor your accounts: Regular review of your accounts allows you to quickly detect if anything is amiss. While monitoring your accounts, it is also a good practice to ensure that your contact information is up to date.
- Be way of public Wi-Fi: Avoid accessing financial accounts over public Wi-Fi networks. Use a virtual private network (VPN) if necessary.
Personal habits and awareness
- Be cautious: Be vigilant about suspicious emails, messages, and calls.
- Don’t click on links or open email attachments: Cybercriminals use fraudulent email, aka phishing email, to spread malware or persuade you to share valuable information. If you weren’t expecting an email or it looks suspicious, use an alternative communication method to confirm the legitimacy of the email.
- Report a security issue: If you or your clients with a Jackson account notice suspicious activity, please notify us immeidately and report a security issue.
- Educate yourself and inform others: View our cybersecurity resources to stay informed about common scams and cybersecurity best practices. Share these security tips with family and fiends to help protect them.
- Communicate securely: Secure email encrypts the contents of messages, ensuring that only the intended recipient can read them. Learn how to open secure messages from Jackson desktop or mobile.
Reporting a security issue
If you or your clients with a Jackson account received suspicious email, text, or call claiming to be from Jackson or notice any suspicious activity with your account, please report it immediately. If you cannot access your account or suspect someone else has gained access to it, please contact us at (877) 565-2968.
Report fraud with the Federal Trade Commission (FTC)
We are committed to protecting clients and customers from cybercriminals and fraud attempts. If you think you've spotted a scam or fell victim to one, report it to the FTC immediately.
Jackson® is the marketing name for Jackson Financial Inc., Jackson National Life Insurance Company® (Home Office: Lansing, Michigan), and Jackson National Life Insurance Company of New York® (Home Office: Purchase, New York).