FAQs

The MICC is the only cybersecurity certication service for the mortgage industry. Any business participating in the mortgage industry which desires to improve its cybersecurity program and use that effort to achieve a marketing edge over its competitors should use our service.

BSI is the British equivalent to our American National Standards Institute (ANSI). They are a hub for all info related to all kinds of standards around the world.

If your company is already ISO 27001-2013 certified or even "certifiable", then you should have no problems with our MICC Platinum level certification which is aligned with the U.S. NIST Cybersecurity Framework...which in turn is aligned with the ISO 27001-2013 standard.

Getting an ISO 27001-2013 certification is MUCH more expensive than getting any of our certifications--and your customers will likely not understand the difference between them at all. Few people do.

Who would you rather get a mortgage loan from? A company that accepted its cybersecurity responsibilities and was obviously working on improving their cybersecurity program...or the other company that did not want to discuss cybersecurity because it already knew that its program was a mess...if it existed at all. The mortgage industry collects a VAST amount of private data on our citizens, therefore it has moral and legal responsibilities to protect and safeguard that data. We have certifications for companies who are at all levels of the cybersecurity process. At the Bronze level (the lowest level), basically all that is required is to perform a self-assessment and commit to building a program. At the highest or Platinum Level, we certify that you have implemented a full program that is aligned with the best standard in your industry and are committed to keeping it updated. 

Build trust and reputation with customers, staff and other partners. In today's world, anyone who takes cybersecurity seriously is seen as contributing to national security. Such an effort gains the respect of all who witness it.

Protect client data and company assets. By virtue of your documented efforts to build a cybersecurity program, you are doing what needs to be done to meet your responsibilities to customers, staff, partners, vendors and investors. You are protecting your company and your company assests.

Gain a competitive advantage. We can tell you that most of your competitors in the mortgage industry are asleep at the wheel. Mortgage lenders basically sell a commodity...there is little difference between loans. Your differientiator is your commitment to service and excellence. A MICC is a sign of excellence that will be rewarded in the marketplace.

Establish a critical cybersecurity support relationship. The MICC program is owned and operated by dedicated cybersecurity professionals recognized as the premier cybersecurity service firm catering to the mortgage industry. Partner Mitch Tanenbaum has over 20 years hands-on experience in the mortgage industry and understands the business and technology completely. Our firm can be a powerful, protective ally and partner as you navigate treacherous business and technology waters.  

Each certifications is good for one year and must be renewed annually. Before it can be renewed, we must certify your level again.

That depends upon your level of certification. Certification Level pricing ranges between $195 per year to $795 per year.

If you have earned any of the MICC certifications, then you are in the process of building a cybersecurity program which is the goal of the NY DFS regulation. The only MICC certification level that has a direct relationship to the NY DFS regulation is the Platinum Level Certification. If you have achieved and been awarded a Platinum Level Certification, then your company will be in full-alignment with the NY DFS regulation which is considered a financial services best business practice.

Your company may not be required to comply with the NY DFS regulation. But there are many indications that other states are about to adopt the NY DFS regulation (or something very similar), so getting started on building your cybersecurity program now is what you should be doing.

But remember that the primary value of the MICC program is for borrowers who have concerns about how their private information is being protected and are seeking some assurance from you that you are truly serious about protecting their information. By proudly displaying your MICC certification level on your website, you are telling them up-front that this is an important issue to your company and that you take your cybersecurity responsibilities seriously.

During our certification process, certain activities require that you have a relationship with a cybersecurity company. We are certainly available to be your cybersecurity company, but if you already have a relationship with another cybersescurity company -- no problem -- we are more than happy to work with that company to help you get certified.

Take a look at the benefits question above. All those same benefits apply to you no matter your size. You are still responsible for protecting client personal data. You may not need a Platinum Level Certification, but having any certification at all sets you apart from your competition and signals to your customers that you take your cybersecurity responsibilities seriously.

CyberCecurity, LLC is a full-service cybersecurity company headquarted in Denver, Colorado. The company is led by two highly respected cybersecurity professionals...Ray Hutchins and Mitch Tanenbaum. They are both directly committed to your security.

No. The first thing you do after you put in your security system at your business or home is to put signs and decals up notifying the world that you have installed physical security. That way potential intruders know it will cost more to break in and they will quickly move on to the world of unguarded targets. And it will cost more and it will be harder to successfully attack you if you earn our certification. You may not be impenetrable...no one is...but you are a hardened target.

If a potential attacker sees the certification seal on your site, that means he is reconnoitering you. The last thing he wants to see is that his work is going to be more difficult and/or more expensive.

Your certification seal declares the fact that your business takes cybersecurity seriously; not only to potential criminals, but to customers, partners, vendors, and (perhaps most importantly) the staff who are on the front line. It’s a sign of commitment, confidence, and strength…three important things you want to bring to a fight you intend to win.

Yes. It will be very similar to the look and function of the MICC but will accomodate most other businesses.  Virtually any other business that has client, company, or other data that needs to be protected can benefit from our Business Cybersecurity Certification (BCC) and other services if required. You can see the site at https://bizcybercert.us/

Pretty simple. If you are not happy with our service and/or products, we'll refund the money you paid for that one annual certification year. Please see our Terms of Use for full details.

This is a cybersecurity program specifically designed for smaller mortgage brokers, originators, closers, and other mortgage industry companies with 10 employees or less and no more than one physical location and who are exempt from the NY DFS 23CRR500 (if that regulation even applies to you). This is a professional, comprehensive cybersecurity program package for only $3,950. This small mortgage broker cybersecurity program is fully aligned with our MICC as described on this web site. Please go here for more information.  https://www.cybercecurity.com/small-mortgage-broker-cybersecurity-program/