Viewpoints by Thomas Shola, at John Hancock Retirement

Thom is responsible for the development, execution, and oversight of all John Hancock risk management and information security activities, with an emphasis on cybersecurity and continuous improvement of the technical aspects of risk management and security posture. Thom has more than 31 years’ experience in the financial services industry. He holds certifications in Lean Six Sigma, Third-Party Risk Professional and Certified Information Systems Security Professional.
Prior to joining John Hancock, Thom was with Santander Bank from 2013 to 2017 as head of event escalation and policy assurance, operational risk management. Before that he worked at the Royal Bank of Scotland as head of Americas’ fraud operations. Thom earned a B.S. in Business Management from Bryant College and an M.S. in Cybersecurity Policy and Governance from Boston College. Thom is based in Boston, Massachusetts.
-
Get to know the SPARK Institute's cybersecurity best practices
Because cybercriminals continue to target retirement assets, the SPARK Institute created a helpful guide to cybersecurity. We cover the key components to help recordkeepers document and communicate their protocols to defend against cybercriminals.
Read more -
Managing your plan’s cyber liability insurance
Cyber liability insurance is getting more expensive, and plan sponsors need to budget for this added cost. Learn what’s driving up the price and how your cybersecurity strategy may help you secure better pricing.
Read more -
Protecting your personal information—a cybersecurity checklist
Identity theft is on the rise. Make sure you’re taking the necessary steps to help protect your personal information and online accounts with our cybersecurity checklist.
Read more -
Cybersecurity guidance from the DOL for retirement plan fiduciaries
The DOL has issued three documents outlining cybersecurity tips and best practices. Retirement plan fiduciaries need to take the threat seriously by adopting the DOL’s best practices and tips for plan fiduciaries, service providers, and plan participants.
Read more -
The three layers of retirement plan cybersecurity: a primer for fiduciaries
Learn about the three layers of retirement plan cybersecurity due diligence.
Read more -
Seven back-to-office cybersecurity tips
As you begin to bring employees back to the office, you may need to take special steps to safeguard your company’s network.
Read more -
How to protect your small business from COVID-19-related scams and cybersecurity threats
The federal aid made available by the CARES Act, combined with widespread anxiety and uncertainty, creates perfect conditions for scammers and hackers. Having the right controls in place can help you protect your business and your employees from hacking and fraud.
Read more -
Eight ways to protect your online personal information—including your retirement plan
Understand online risks and how you can stay safe when it comes to personal information—such as your retirement plan.
Read more -
Cybersecurity and your 401(k) plan fiduciary duties
Did you know that systems and data security fall within a retirement plan fiduciary’s duties?
Read more
- Previous
- 1
- Next