CYBERSECURITY 

We take a proactive approach to protecting Company and employee information from cybersecurity threats. Our Information Systems (IS) teams maintain a variety of tools and security measures, while continually scanning for emerging digital interventions and best practices to head off threats in the rapidly evolving digital landscape.

A significant part of our cybersecurity approach is arming our employees with knowledge regarding the latest cybersecurity threats, the approaches bad actors will take and the necessary precautions to avoid falling victim to an attack – on both their personal technology tools and those they access at work.

To support employees in this essential component of our defense strategy, we employ comprehensive cybersecurity and AI policies and numerous training tools and approaches. Following are a few highlights from 2024:

As part of our enterprise strategy, Olympic Steel carries cybersecurity insurance and our IS team partners with our Corporate Internal Audit department in managing Olympic Steel’s “Written Information Security Program” (WISP).

  • 1,287 unique employees participated in training (those who routinely use computers as part of their role)
  • 11,039 employee training courses were completed – an average of 8.5 courses per employee - an increase from the 5,193 completed in the prior year
  • 2,136 total training hours were completed - an increase from the 1,253 hours completed in the prior year
  • Ongoing IS and Executive team tabletop simulations
  • Ongoing employee phishing simulations, using the phishing alert and reporting button
  • Use of 3rd-party consultants to support our cyber security strategy 

LEARN MORE

Find additional information in our most recent Corporate Responsibility Report available here

We also work closely with outside partners and strive to meet National Institute of Standards and Technology (NIST) cybersecurity standards and best practices. Olympic Steel’s Board of Directors receives annual updates (at a minimum) and offers program recommendations and best practices to strengthen security efforts.