Notifying SERS of Cyber Attacks

Reporting a Cyber Incident

When a cyber incident occurs, the speed of the response is critical. Employer Services asks that employers notify SERS of any significant cyber incident, including ransomware or business email compromise, within 72 hours of discovery.

Often, email communication may not be available. In such cases, call Employer Services by phone at 877-213-0861 and request a conference call.

SERS will work to accommodate your schedule, exercise discretion with shared information, and treat all details with the highest level of confidentiality.

If email communication is available, contact Employer Services at employerservices@ohsers.org. 

Information to Provide

When notifying SERS of a cyber incident, please provide the following information, if available:

  • Date the incident was first discovered
  • Initial impact summary
  • Forensic information that can be shared
  • How the incident occurred
  • What information was accessed or taken
  • Actions taken to remediate the situation
  • Contact information for relevant personnel within the organization
  • Current phase of incident response (Identification, Containment, Eradication, or Recovery)

Thank you for helping SERS protect confidential member data.

Contact Us

If you have questions about your employer responsibilities or need assistance with eSERS, contact Employer Services at 877-213-0861.

Top