Cyber Security

FMI remains committed to improving security through ongoing initiatives. Although we cannot prevent a cyber attack or data breach from occurring, we can manage risks through education, process improvements and technology enhancements or additions.

Latest News

Cyber Awareness Resources

Cyber Eye Thumbnail
Although Cyber Awareness Month has come and gone, the importance of being vigilant is ever present. Sponsored by the National Cyber Security Division within the Department of Homeland Security and the National Cyber Security Alliance, the resources are always available for you to make sure that your management and operational teams have the resources and information necessary to safeguard your assets.


History of National Cyber Security Awareness Month
Department of Homeland Security
National Cyber Security Alliance
DHS Cyber Toolkit
Cyber Campaign

Just in Time Breach Alerts

ClockFMI is working with Fortalice, LLC and federal law enforcement to bring you the most up-to-date information and resources in the fight against cyber-crime and data security. We are constantly monitoring all data breach incidents within the retail industry and sharing “Just In Time Alerts” with you when a breach happens or other important information is released - in an effort to ensure FMI members receive as much information as possible to mitigate risk to their organizations.

Cyber Corner Posts 

Lighted KeyboardEach month, FMI provides food retail industry-specific cyber security information in its "Cyber Corner." These key topics will be supplemented with additional content including guidance on best practices, and practical steps. You can also learn about products that FMI is providing as part of an ongoing membership benefit.

FMI Cyber Security Resources

  • Cyber Security Toolkit

    This site offers practical applications for you and your company to manage risks before, during and after a data breach or cyber attack. Additional resources accompanying this toolkit include: 

    Operational Guidelines for Mitigating and Responding to a Data Breach - This manual offers step-by-step guidelines on how to protect, react and respond to cyber security issues and concerns. 

    Recommended Guidelines for Protecting Digital Assets - This document serves as a reference and template for both review and potential implementation within FMI member companies. This document can be used in parts or in whole depending on the unique nature of each individual company.

    Third Party Notification Letter Template - After reviewing the Cyber Corner post on  vendor management, this template can be used to create your own third party notification letter. 
  • FMI Crisis Communications Manual

    To best handle a crisis when it happens, the most equipped teams invest time in preparing, planning, testing and practicing for various scenarios that may one day happen to or involve their food retail location. Though it is important to recognize the role of the Asset Protection Crisis Preparedness Team and Crisis Manager, the FMI Crisis Communications Manual will focus on Crisis Communications. 

    Additional Resource: FMI Incident Response Communications Plan

  • 2015 U.S. Grocery Industry Speaks

    In its 65th year, FMI’s The Food Retailing Industry Speaks ("Speaks") provides the industry with important operational and financial benchmarks ranging from sales and profits to shrink, turns and differentiation tactics. The data is drawn primarily from FMI’s annual survey of U.S. food retailers and wholesalers, and was supplemented with information from public company Securities and Exchange Commission (SEC) 10K filings.
  • 2016 U.S. Grocery Shopper Trends

    The Food Marketing Institute has long supported U.S. food retailers through annual surveys of shopper behaviors and attitudes, providing consistent metrics to evaluate the changing market landscape. This year, FMI worked with the Hartman Group to supplement our U.S. Grocery Shopper Trends research perspective with a cultural lens, interviewing Americans in their homes and while shopping, and drawing upon ethnographic research into U.S. food consumption and consumers.



Lock_120x88Building a Strong Password Provided by FMI's Trusted Cyber Partners Fortalice Solutions, this webinar demonstrates why strong passwords are vital in cyber security and how to build strong passwords. For additional information, click here.

HandcuffCybercrimes Webinar FMI, in conjunction with the International Association of Interviewers (IAI), recently collaborated on a webinar featuring two industry experts from Fortalice, LLC who offered new perspective on emerging threats for cybercrimes.

State Cyber Security Resources

Security Breach Notification Chart - Perkins Coie's Privacy & Security practice maintains a comprehensive chart that summarizes state laws regarding security breach notification.  The chart is for informational purposes only and is intended as an aid in understanding each state's unique security breach notification requirements.  Lawyers, compliance professionals, and business owners have told us that the chart has been helpful when preparing for and responding to data breaches. Learn More

Tips and Tools

  • US-CERT- tips and advice on common security issues for non-technical computer users.
  • US-CERT Posters and Brochures - guidance on physical and cyber security and how to report suspicious behavior, activity, and cyber incidents.
  • US-CERT Mailing Lists and Feeds -  variety of products including the National Cyber Awareness System and Current Activity updates. The National Cyber Awareness System was created to ensure access to timely information about security topics and threats.
  • Cyber Security Evaluation Tool - tools to assess a company's control system and information technology network security practices against recognized industry standards.
  • NIST Cybersecurity Framework – a framework for improving Critical Infrastructure Cybersecurity which consists of standards, guidelines, and practices to promote the protection of critical infrastructure.
  • NIST Glossary of Key Information Security Terms - glossary of terms and definitions most commonly used in NIST information security publications and in CNSS information assurance publications.
  • Guide to Better Passwords - It is important to remember why strong passwords are crucial: passwords are often the first (and possibly only) defense against intrusion.

General Resources:

  • 2015 US State of Cybercrime Survey - annual report by US Secret Service and PricewaterhouseCoopers   
  • 2014 Security Predictions - predictions to help prepare your network defenses for a safe and secure 2014.
  • 2014 Global Security Report – a valuable resource for businesses (free download from Trustwave).
  •  2014 Data Breach Investigations Report - this year’s DBIR combines the expertise of 19 organizations from around the globe. Download the report to discover stats that might surprise you—from the percentage of espionage-related attacks to the astonishing length of time it often takes to spot a security breach. By knowing today’s threats, you can better protect your organization tomorrow.