CNS is a trusted partner of our credit unions and often we are the first call when there’s a cyber event at an institution. However, there are important limitations to the cybersecurity services that CNS provides.
  • CNS provides general office network design, implementation, and management services.
  • CNS will monitor and patch for supported patches.
  • CNS does not provide cyber security services.
  • CNS does not warrant that managed networks are immune to cyber events or breaches or that lost data is recoverable.
  • We do not monitor client networks for malware, breaches, or breach attempts.
  • Firewall management does not include monitoring for, or responding to, security events.
  • Server and workstation management does not include monitoring for, or responding to, security events.
  • Managed security software, such as anti-virus (i.e. Trend Micro) and Active Directory monitoring (i.e. Netwrix) means they are patched and updated as part of our service, but are not monitored.
  • CNS does not provide cyber forensic services. Please contact your cyber insurance carrier for coverage and details and ensure your incident response plan includes this information.
  • CNS does not warrant or guarantee that your credit union will not experience a breach of managed equipment, software, or data.
What happens if I have a breach?

Unfortunately, beaches are becoming more prevalent than ever, so having a mature and tested incident response plan is a must.

When you become aware of a breach, time is of the essence to control or contain the breach. Please contact us immediately and if you cannot get through on the normal line, use the emergency line or reach out to CNS management directly. Phone calls are best and preferred over email.

We will prioritize a cyber response for your event. There is a fee of $195/hour for this service as we will pull needed team members from other support lines and projects to assist in the response of your event. Our services will be limited to assistance in containment and remediation of the event. We are not able to offer forensic services, which should be provided at the direction of your cyber insurance carrier.

You may lose the use of the impacted systems and services while the breach is being contained and remediated. You should be prepared to shut down impacted services for the duration of the event. Some events can take weeks to fully resolve.

We will provide recommendations and guidance based on our experience throughout the event, but understand our team are not cyber security experts and we cannot warrant a successful recovery of impacted services and data. We cannot provide legal advice. However, we are ready to work with your third parties as necessary to affect a successful remediation.