Where does the real cyber risk sit across your fleet?

Telematics admin portal access requires multi-factor authentication

Telematics admin accounts are named, not shared across the office

Telematics audit logs are reviewed monthly for unusual access

Aftermarket trackers and OEM telematics units are inventoried

Driver tablets and phones are enrolled in mobile device management

Personal apps are separated from dispatch and ePOD apps on driver devices

Lost or stolen driver devices can be remotely wiped within an hour

Driver devices run supported, patched operating systems

Fleet platform passwords are managed centrally, not stored on sticky notes

Fleet platform user lists are reviewed every quarter and stale accounts removed

Single sign-on is used wherever the fleet platform supports it

Critical fleet data is backed up off the vendor platform

Remote access to dispatch and fleet systems requires MFA

Remote access is restricted to known users and known devices

Remote access sessions are logged and reviewed

Vendor remote access is approved per session, not always-on

Brokers, customers and fuel card providers verify payment changes through a second channel

Telematics, TMS and ELD vendors are reviewed for security at onboarding

Fuel card use is monitored for unusual patterns and out-of-area transactions

Insurance, broker and customer cyber requirements are documented in one place