Nextep's 2021 Annual Report is here! See what we accomplished together this year.

Additional Info on Recent Technology Disruptions

In the US, cyber-attacks happen as often as every 39 seconds. As technology becomes more integrated into our personal and professional lives, prioritizing cybersecurity measures is critical. 

Unfortunately, PrismHR, one of Nextep’s technology partners, was recently targeted by one of these threat actors, leading to a disruption in service for portions of Nextep’s online account.

One of our core values and something we pride ourselves on is transparency. Now that we have more details, we want to share what we know about the cyber event PrismHR experienced. 

On Sunday, February 28, PrismHR discovered activity in their systems and took immediate action with their cybersecurity company. Unfortunately, this meant they needed to disable access to their systems to protect the integrity of their software and data. This is why portions of the Nextep account were temporarily unavailable while PrismHR diligently worked to restore service. As soon as we were aware of the service disruption, we began communicating with client leaders.

PrismHR’s cybersecurity team confirmed that, at this point, there is no evidence that any data had been compromised or accessed without authorization. During the incident, Nextep’s service teams worked tirelessly to manually process payrolls to ensure clients were paid on-time while PrismHR worked to bring their systems back online. PrismHR has also released an official statement reporting the cyber event and reassuring that there was no theft or unauthorized access of data. 

As the week came to an end, functionality was restored to PrismHR’s systems, and Nextep reached out to clients again to offer information on what comes next and additional support.  

As a SOC 2 Type 2 certified organization, PrismHR applies processes and procedures to ensure technology and data are secure. We are confident in the steps they have taken to handle this incident and commend the swift action taken to secure data. Nextep also has the SOC designation, which means keeping your data secure is part of our day-to-day operations. 

Cybersecurity is something we don’t take lightly

Our IT team has a serious knack for taking every measure possible to ensure the integrity of our networks, client systems, and communications. While this cyber event was not ideal for anyone involved, we remain as committed as ever to protecting your information as a trusted partner to your business. Here are just a few of the security measures we have in place at Nextep to keep our employees and clients safe: 

  • We work with partners who hold compliance accreditations like SOC 2, FedRAMP, HIPAA, NIST 800-34, NIST 800-53, NIST 800-171, and FIPS 140-2 validation
  • Secure communication with partners via SSL/TLS and encrypted emails
  • Multiple levels of offsite and cloud-based data backup and replication
  • Electronic access control and surveillance systems at our office locations
  • Hard drive encryption on all mobile computers
  • Monthly cybersecurity training for all employees
  • Automated system and data monitoring tools
  • Anti-malware systems

On top of extensive security measures, we also hold a robust cybersecurity insurance policy, as does our partner, PrismHR. It provides an additional layer of protection to help us mitigate any negative impact on our clients and our business in the event of a cyber-related incident on our systems. 

We know this situation was difficult for all involved, but we want to assure you, there is still no evidence of unauthorized access, misuse, or theft of client data at this time. We simply can’t apologize enough for the disruption. 

When we say we’re serious about cybersecurity around here, we mean it. Elevating the employment experience for you and your employees is one of Nextep’s guiding principles, and we have teams of relentlessly dedicated experts to ensure we can continue doing just that, no matter what stands in our way.
_______________________________________________________
 
For more information about the PrismHR outage, please check out our webinar below.

Also on Nextep

It’s no surprise benefits are one of the top reasons for employees staying with a company or going elsewhere. The Society for Human Resource Management (SHRM) study shows that 36% of employees leave for better benefits. Employee retention can be daunting, but we’re here to break it down! Therefore, we’re talking today about benefits. We’ll look […]
Read more
In our employee retention series, we’ve talked about flexibility, employee growth, and diversity, equity, and inclusion (DEI). Now, let’s look at another topic that has a massive impact on attracting and retaining top talent: pay! The Great Resignation and the impacts of an ongoing pandemic have long-lasting effects. As a result, employees are evaluating their […]
Read more
Now is the time for employers to carefully review any arbitration or employment agreements they have in place. On March 3, 2022, President Biden signed the Ending Forced Arbitration of Sexual Assault and Sexual Harassment Act (HR 4445).  In cases of sexual assault or harassment in the workplace, many employers ask employees to sign arbitration […]
Read more
How often do you get the chance to expand beyond your current retention or recruiting strategies? It’s common for managers to get stuck in the daily work routine and overlook the growth opportunities their employees want. That neglect may mean a greater chance of talented employees leaving in the short run. Around 48% of employees […]
Read more
When employees can’t bring their whole self to work, they leave. Creating a diverse, equitable, and inclusive (DEI) workplace is imperative to increasing employee engagement and retention. Also vital: talking to your employees about it “Black and Hispanic workers are more likely than white workers to say they’re actively looking for new employment opportunities,” according […]
Read more
The Great Resignation: a term most leaders are probably tired of hearing but can’t ignore. So, instead, let’s talk about The Great Retention! We know tackling retention can be a daunting task, which is why we’re here to help you break it down and take it one step at a time.  The Great Resignation Retention […]
Read more
(JANUARY 13, 2022) UPDATE: The Supreme Court halted OSHA’s emergency temporary standard (or ETS) to enforce COVID-19 vaccination statuses for employees. While there’s a chance new OSHA guidance could emerge at some point, you can disregard the previously announced vaccination mandate deadlines. As always, we’ll keep you in the loop if new legislation emerges. If you […]
Read more
President Joe Biden signed the Infrastructure Investment and Jobs Act into law on Monday, November 15, 2021. While the bill primarily focuses on the nation’s physical infrastructure, small business owners need to know what it means for them.  The most significant impact for small businesses may be the Employee Retention Tax Credit ending, which was […]
Read more
On November 4, the White House announced that OSHA is issuing a COVID-19 Vaccination and Testing Emergency Temporary Standard (ETS) that applies to employers with 100 or more employees (covered employers*). Below are answers to questions you might have about the OSHA vaccine mandate as an employer.  Please note that a federal appeals court temporarily […]
Read more
On September 9, 2021, President Biden announced his action plan to fight the continued effects of the COVID-19 pandemic. The vaccine mandates outlined in the plan directly affect many employers, including businesses in the healthcare field or those with 100 or more employees. The safety requirements will be enforced by the Department of Labor and […]
Read more
On Thursday, March 11, President Biden signed a new stimulus relief package, known as the American Rescue Plan, into law. The $1.9 trillion stimulus package is geared to boost the economy and help provide wider access to COVID-19 vaccinations in an effort to curb the effects of the ongoing pandemic.  This is the third stimulus package […]
Read more
It’s more critical than ever to make sure your business has a stable foundation. Businesses must be able to adjust to unforeseen circumstances and keep a solid financial footing through hard times. Here are 4 ways a PEO can help your business have more financial stability and weather trying times: PEO + OVERALL COST SAVINGS […]
Read more

Download Our App