FAQs – Frequently Asked Questions

Read our FAQs to find easy answers to our most frequently asked questions regarding Helion, our services, or general dealership cybersecurity & IT information. Click on a Category heading below to find questions regarding each section title.

ABOUT HELION

  • How long has Helion Technologies been in business?
    Helion Technologies has proudly provided dealership cybersecurity and IT support for more than 30 years, helping automotive dealerships protect their systems, data, and operations. Learn more about Helion.

  • What cybersecurity and IT services does Helion Technologies provide for automotive dealerships?
    Helion specializes in cybersecurity and managed IT solutions for automotive dealerships. We provide customized services designed to improve security, reduce downtime, optimize performance, and support your dealership’s technology infrastructure. Speak with us to get more information & hear about our service package options.

  • What types of dealerships does Helion support?
    Helion works exclusively with dealerships, including automotive, commercial truck, powersports, and RV dealers.

  • Does Helion provide nationwide dealership IT support?
    Yes. Helion provides dealership IT and cybersecurity support for more than 30,000 rooftops across the United States, with additional support for select dealerships in Canada.

  • What makes dealership IT different from standard business IT?
    Automotive dealerships rely on specialized software, vendor integrations, compliance requirements, and high-availability (no downtime) systems that many businesses do not. Dealership IT requires expertise in dealer management systems (DMS), cybersecurity, financial data protection, FTC regulations, and operational uptime.

  • Why is cybersecurity important for automotive dealerships?
    Automotive dealerships store large volumes of sensitive customer data, including financial records, credit applications, and personally identifiable information (PII). This makes dealerships frequent targets for ransomware, phishing, and other cyberattacks. Specialized cybersecurity helps protect dealership data, maintain compliance, and reduce business risk. Helion can help in all of these areas – fulfilling the compliance needs & protecting your important data. Learn more about Our Services.

  • Can Helion support multi-rooftop dealership groups?
    Yes. Helion supports many large dealership groups operating multiple rooftops across multiple states, providing centralized cybersecurity, IT management, and scalable support.

  • Does Helion work with dealership vendor partners?
    Yes. Helion works directly with your dealership as well as approved vendors and third-party partners when needed. This includes helping manage software integrations, access permissions, user accounts, and secure connections to critical systems and data. Learn more about Our Services.

  • What dealership management systems (DMS) or other software platforms does Helion support?

    Helion supports many leading dealer management systems (DMS) and dealership software platforms, including CDK Global, Tekion, and Reynolds, along with others. We also provide specialized optimization and migration support for DMS environments. Find out more about our Tekion Optimization Services.

  • Can Helion manage both on-site and remote dealership employees?
    Yes. Helion supports both on-site and remote employees through a combination of remote support specialists and field technicians. We can manage user access, devices, cybersecurity, and IT support for your workforce regardless of location. Learn more about Our Services.

  • What industries besides automotive does Helion support?
    Helion focuses exclusively on the dealership ecosystem, including automotive, commercial truck, powersports, and RV industries.

OUR MANAGED IT SERVICES

  • What are managed IT services for automotive dealerships?
    Managed IT services for automotive dealerships provide ongoing support, monitoring, maintenance, and cybersecurity for dealership technology systems. Helion offers tiered managed IT and cybersecurity solutions that help dealerships manage everything from user accounts and password resets to network security, infrastructure support, and DMS optimization. Speak with us for a free consultation.

  • How can managed IT reduce dealership downtime?
    Managed IT services reduce dealership downtime by proactively monitoring systems, identifying issues early, and resolving problems before they impact operations. With continuous monitoring of networks, devices, and security threats, Helion helps keep dealership systems running smoothly so employees can stay focused on serving customers and selling vehicles. Learn more about Our Services.

  • What should dealerships expect from a managed IT provider?
    A managed IT provider should deliver proactive monitoring, fast issue resolution, cybersecurity protection, system maintenance, and strategic technology guidance. Dealerships should expect reliable support that minimizes downtime, protects sensitive data, and keeps critical business systems running efficiently. Helion offers 3 unique tiers of service levels that encompass these aspects and allow each dealership/dealership group to pick the best fit for their specific needs.

  • Should dealerships outsource IT support?
    Many dealerships benefit from outsourced IT support, even if they already have in-house IT staff. Outsourced specialists can provide advanced cybersecurity monitoring, compliance support, and additional technical resources, allowing on-site teams to focus on hardware, infrastructure, and day-to-day desktop support. Are you considering adding additional IT support & threat monitoring from Helion? The cost savings may also surprise you: Contact us for a pricing quote.

  • How quickly should dealership IT issues be resolved?
    Dealership IT issues should be addressed as quickly as possible, especially when they involve security threats, system outages, or critical business software. Fast response times help minimize downtime, reduce operational disruption, and prevent cyber threats such as ransomware or unauthorized access. Ensure you are protected from threats with managed Cybersecurity & IT solutions from Helion.

  • What is included in dealership help desk support?
    Dealership help desk support typically includes password resets, user account management, software troubleshooting, hardware support, access issues, printer and workstation assistance, and basic network troubleshooting. Helion offers multiple service tiers so dealerships can choose the level of support that best fits their needs. Helion offers 3 unique tiers of service levels that allow each dealership/dealership group to pick the best fit for their specific needs – including Service Desk Plus.

  • How often should dealership servers and workstations be updated?
    Dealership servers, workstations, and software should be updated as soon as security patches and critical updates become available. Regular updates help prevent vulnerabilities, improve performance, and maintain compliance. Before major updates, systems should be tested for compatibility and backed up to reduce operational risk. These services are available within managed service tiers from Helion.

  • Can managed IT services reduce dealership operating costs?
    Yes. Managed IT services can often reduce operating costs by lowering downtime, improving efficiency, preventing costly cyber incidents, and reducing the need for large in-house IT teams. This is especially valuable for dealership groups managing multiple locations or rooftops. Speak with a Helion representative to get a free pricing quote based on your unique needs.

  • How does proactive IT monitoring work?
    Proactive IT monitoring continuously tracks the health, performance, and security of your systems. Helion monitors networks, devices, servers, and security alerts 24/7 to identify issues early, prevent outages, and respond quickly to potential threats. Learn more about Our Services.

  • What happens if a dealership loses internet access?
    If a dealership loses internet access, critical operations such as DMS access, customer communications, payment processing, and online lead management may be disrupted. IT support teams work quickly to identify the cause of the outage, coordinate with service providers, and restore connectivity as soon as possible. Even if we’re off-site Helion’s team will work with on-site staff to diagnose & troubleshoot the source of the outage.

OUR CYBERSECURITY SERVICES

  • What cybersecurity threats target automotive dealerships specifically?

    Automotive dealerships are frequent targets for cybercriminals because they store large amounts of sensitive customer data, including contact information, financial records, credit applications, and personally identifiable information (PII). The most common threats include phishing, ransomware, social engineering, credential theft, and vendor-related breaches. Many attacks begin with deceptive emails or messages designed to trick employees into granting access to systems or data. How can you protect your dealership? Learn more about managed Cybersecurity & IT solutions from Helion.

  • Why are dealerships frequent ransomware targets?

    Dealerships are attractive ransomware targets because downtime directly impacts sales, service operations, financing, and customer trust/reputation. Cybercriminals know dealerships rely heavily on constant system access, making them more likely to pay ransom demands to restore operations quickly. Strong cybersecurity measures help reduce ransomware risk and improve recovery readiness. Ensure you are protected from threats like ransomware with managed Cybersecurity & IT solutions from Helion.

  • How can dealerships protect customer financial data?
    Dealerships can protect customer financial data by following data privacy compliance requirements, applying security patches promptly, encrypting sensitive records, limiting user access, and training employees to recognize phishing attempts and suspicious activity. Strong cybersecurity policies help reduce the risk of data breaches and unauthorized access. Improve your dealership’s data safeguarding and maintain compliance with managed Cybersecurity & IT solutions from Helion.

  • What cybersecurity protections should every dealership have?

    Every dealership should use multiple layers of cybersecurity protection, including firewalls, email spam filtering, multi-factor authentication (MFA), endpoint protection, 24/7 threat monitoring, regular security audits, secure backups, and an incident response plan.

  • Does Helion provide 24/7 cybersecurity monitoring?

    Yes. Helion provides 24/7 cybersecurity monitoring, threat detection, and incident response to help dealerships identify and address threats before they cause serious disruption or data loss. Learn more about all our managed Cybersecurity & IT services.

  • What is endpoint detection and response (EDR) & why is it so important?

    Endpoint Detection and Response (EDR) is a cybersecurity solution that monitors devices such as laptops, desktops, tablets, and mobile phones for suspicious activity. EDR helps detect threats, contain attacks, and prevent compromised devices from spreading malware across the network. Many dealerships either lack properly configured EDR or do not realize their current protection has gaps.

  • How does multi-factor authentication (MFA) improve dealership security & why should MFA be implemented at dealerships?

    Multi-factor authentication (MFA) improves security by requiring users to verify their identity using two or more authentication factors, such as a password and a mobile verification code. Even if a password is compromised, MFA makes unauthorized access significantly more difficult, helping protect sensitive dealership systems and customer data. Learn more about why MFA is important for dealerships.

  • What should dealerships do after a phishing attack?

    After a phishing attack, dealerships should immediately isolate affected accounts or devices, reset compromised credentials, investigate what data may have been exposed, and notify affected employees, customers, or partners if necessary. After containment, the dealership should review security gaps and improve employee training to reduce future risk. View our Blog for more info about Phishing, how to prevent it, & what to do when an attack happens.

  • How often should dealerships perform cybersecurity audits?
    Dealerships should perform cybersecurity audits at least annually, and more frequently when implementing new software, migrating systems, undergoing mergers or acquisitions, or responding to major security changes. Regular audits help identify vulnerabilities, maintain compliance, and strengthen overall security posture. Read more Blogs about Security Audits.

  • Can cybersecurity insurance requirements affect dealership IT?
    Yes. Cybersecurity insurance requirements can significantly affect dealership IT policies and infrastructure. Many insurers require dealerships to implement security controls such as multi-factor authentication, endpoint protection, employee training, secure backups, and incident response planning before coverage is approved or renewed. Read our Blogs to learn more about Cybersecurity Insurance.

DEALER MANAGEMENT SYSTEMS (DMS), other SOFTWARE, & VENDORS

  • What is a Dealer Management System (DMS)?

    A Dealer Management System (DMS) is a software platform designed specifically for automotive dealerships to manage core business operations. Like a traditional CRM (Customer Relationship Management) platform, a DMS stores customer, sales, invoice, and transaction data. It also manages inventory, parts, service history, financing, and other dealership operations. Common DMS platforms include CDK Global, Tekion, Dealertrack, and The Reynolds and Reynolds Company. Did you know Helion offers Tekion Optimization Services?

  • Why is DMS security important?

    Your DMS contains some of your dealership’s most sensitive data, including customer records, financial information, contracts, and service history. Strong DMS security helps prevent data breaches, maintain compliance, and protect customer trust and dealership reputation. Read more about how a dealership’s cybersecurity affects customer loyalty in our Blog.

  • What happens during a DMS migration?

    Migrating to a new system is a large, time-intensive undertaking – unfortunately, it can also be a project that exposes a lot of vulnerabilities. Think of all the moving pieces; you’ve got new vendors, bank transfers, accounts being created, & deprecated user accounts who still have access to old records & platforms. Cybercriminals are on the lookout for signs that you are switching platforms. They know while you’re busy & distracted is the best time to use social engineering or phishing attacks to trick employees into giving them access to your data. That’s why ensuring you’re protected during DMS or other software migrations is vital for dealerships. Read more about this topic in our Blog.

  • How can dealerships prepare for a DMS transition?

    Dealerships should prepare for a DMS transition by creating backups, auditing user permissions, documenting integrations, training employees, and developing a clear migration timeline. Strong communication between departments, vendors, and IT teams helps reduce risk and minimize disruption. We have a number of resources for assisting dealerships with DMS upgrades/migrations and optimization.

  • What are the biggest IT risks during a DMS switch?
    The biggest risks during a DMS switch include phishing attacks, misconfigured integrations, unauthorized vendor access, incomplete backups, credential theft, and accidental data loss. Any transition creates temporary vulnerabilities that cybercriminals may attempt to exploit. Read more in our Blogs: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS & Changing DMS: The Cyber Risk No One Likes to Talk About.

  • How can dealerships reduce downtime during a DMS transition?

    Dealerships can reduce downtime by planning the migration carefully, scheduling cutover during off-hours, validating integrations beforehand, and ensuring all teams understand the transition timeline. Some downtime may be unavoidable, but preparation can significantly reduce operational disruption. Read more in our Blog: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS

  • Who should manage cybersecurity during a DMS migration?

    The short answer is: Cybersecurity is everyone’s job – all the time. But cybersecurity during a DMS migration specifically should be managed collaboratively by dealership leadership, IT teams, cybersecurity specialists, and key vendors. Every employee also plays a role by following security best practices, verifying requests, and reporting suspicious activity. Read more here: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS

  • How long does a dealership DMS conversion usually take?
    The final cutover to a new DMS may take only a few hours or a single business day, but full migration planning often takes weeks or months. Preparation includes data validation, backups, integration testing, employee training, and security reviews. Read more here: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS
  • What data should dealerships back up before changing DMS providers?
    Dealerships should back up all critical business data before switching DMS providers, including customer records, contact information, contracts, sales data, accounting records, inventory data, service history, and warranty documentation. Note: Having multiple back-up locations for redundancy is also highly recommended.
  • Can poor IT planning delay a DMS implementation?
    Yes. Poor planning can delay implementation, increase downtime, create security vulnerabilities, and lead to data migration issues. Thorough planning helps ensure a smoother and more secure transition. Read more about the best methods here: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS.

  • What risks come from too many dealership software integrations?
    Many dealerships evaluate software integrations & vendors primarily on functionality & operational fit. But cybersecurity professionals understand that even one poorly secured third-party integration can create exposure across the entire dealership environment. Each pathway in or out of a platform creates a potential entry point into your systems. Try to limit the amount of third party integrations to only those that are necessary & can be monitored on a daily basis.

  • How can dealerships securely manage third-party vendors?

    Each third-party integration creates another potential entry point into your systems. Too many poorly secured integrations can increase cybersecurity risk, create visibility gaps, and expose sensitive dealership data if one vendor is compromised. Read more in our Blogs: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS & Changing DMS: The Cyber Risk No One Likes to Talk About.

  • What dealership systems should integrate with the DMS?
    The right integrations depend on your dealership’s operational needs. Common DMS integrations include CRM platforms, service scheduling tools, inventory systems, accounting software, OEM tools, and employee management platforms. Integrations should be limited to necessary systems to reduce security risk and maintain data integrity. Read more in our Blogs: Top Dealership Cybersecurity Issues to Avoid When Migrating to a New DMS & Changing DMS: The Cyber Risk No One Likes to Talk About.

  • Should dealership software be cloud-based or on-premise?
    Many modern dealerships benefit from cloud-based software because it offers greater scalability, remote access, easier maintenance, and lower infrastructure costs. However, the best approach depends on your dealership’s operational, compliance, and security requirements. Read more about Cloud-based computing solutions & our recommendations in our Blog.

  • What are the cybersecurity risks of legacy dealership software?
    Legacy software often lacks modern security protections and may no longer receive patches or updates. Risks include unpatched vulnerabilities, weak authentication, compatibility issues, and inactive user accounts that still retain access after migrations. Read more in our DMS Migration Blog, specifically Section #3.

  • How can dealerships safely give vendors remote access?
    Vendor remote access should be tightly controlled, monitored, and limited to business-critical needs. Dealerships should use secure access methods, require multi-factor authentication, monitor activity logs, and review permissions regularly to ensure vendors only access what they need. Read more in our DMS Migration Blog, specifically Section #4.

DEALERSHIP CYBERSECURITY: PROTECTING CUSTOMER DATA, COMPLIANCE, & RISK

Protecting Customer Data

  • What customer data do dealerships need to secure?
    Dealerships collect and store large amounts of sensitive customer data, making cybersecurity especially important. This includes basic contact information such as names, email addresses, and phone numbers, as well as highly sensitive data like Social Security numbers, bank account details, credit card information, driver’s license data, and other personally identifiable information (PII). A data breach can lead to identity theft, fraud, financial loss, and reputational damage. Learn more about Data Privacy & Compliance Regulations in our Blog.

  • How should dealerships store finance and credit application records?
    Dealerships should store finance and credit application records using secure, encrypted systems with strict access controls. Sensitive financial data should only be accessible to authorized personnel, regularly backed up, and protected by strong cybersecurity policies to reduce the risk of unauthorized access or data breaches. Learn more about Data Privacy & Compliance Regulations in our Blog.

  • How long should dealerships retain customer financial data?
    Record retention requirements vary by state, lender, OEM, and federal regulations. In many cases, dealerships must retain sales and financial records for 5–10 years, though exact requirements depend on the type of record and applicable laws. Dealerships should review legal and compliance requirements regularly to ensure proper retention and disposal practices. Learn more about Data Privacy & Compliance Regulations in our Blog.

  • What is encrypted data storage?
    Encrypted data storage is a security method that converts readable data into encoded information that can only be accessed with the proper decryption key or credentials. Encryption adds an important layer of protection, making stolen data significantly more difficult for unauthorized users to read or exploit. Learn more about Data Encryption.

  • Are cloud backups secure for dealerships?
    Yes—when properly configured, cloud backups are highly secure and often safer than relying solely on on-premise storage. Cloud backups provide redundancy, disaster recovery, encryption, and faster recovery after hardware failure, ransomware, or other cyber incidents. Read more about Cloud-based computing solutions & our recommendations in our Blog.

  • How can dealerships securely dispose of old hard drives?
    To securely dispose of old hard drives, dealerships should ensure all stored data is permanently destroyed and unrecoverable. Common methods include shredding, crushing, drilling, or certified data destruction services. Businesses handling sensitive data should maintain a documented chain of custody and follow recognized standards such as National Institute of Standards and Technology NIST SP 800-88 for secure media sanitization.

  • Should dealerships store customer documents digitally?
    Yes. Although it is worth noting many customers might desire a paper copy of their documents and certain states might require a “wet” signature, digital documents are necessary for numerous reasons. Digital document storage is generally more secure, searchable, and manageable than paper records when proper security controls are in place. Physical documents can be lost, stolen, or damaged, while secure digital storage allows for encryption, backups, access controls, and easier compliance management.
  • What are the risks of unsecured dealership Wi-Fi?
    Unsecured Wi-Fi can expose dealerships to unauthorized access, bandwidth theft, malware, and data interception. Hackers may exploit open networks to monitor traffic or attempt to access internal systems. Dealerships should use password protection, network segmentation, secure encryption, and separate guest networks to reduce risk.


Compliance & Risk

  • Are dealerships required to follow FTC Safeguards Rule requirements?
    Yes. Many dealerships are subject to the Federal Trade Commission Safeguards Rule, which requires financial institutions—including many dealerships—to implement security programs that protect customer information. Compliance requirements may include risk assessments, employee training, access controls, and incident response planning. Read our Blog to understand more about the FTC Safeguards Rule and what your dealership needs to do to meet compliance regulations.

  • What is the FTC Safeguards Rule?
    The FTC Safeguards Rule is a federal regulation requiring covered businesses to develop, implement, and maintain a comprehensive information security program to protect customer financial data. It establishes requirements for risk management, data protection, employee oversight, and incident response. For more detailed information read the FTC Safeguards Rule FAQ or our Blog.

  • How can dealerships stay compliant with data protection laws?
    Dealerships can improve compliance by performing regular risk assessments, maintaining cybersecurity controls, training employees, documenting security policies, and staying current on changing regulations. Because requirements vary by jurisdiction, dealerships should review compliance obligations regularly and work with qualified IT and cybersecurity experts. Learn about important changes by signing up for the Helion Newsletter, reading our Blogs about Compliance, or contact us for an IT Assessment to see how Helion’s services can assist your dealership with your IT & Cybersecurity & Compliance needs.

  • What problems can result from poor cybersecurity?
    Poor cybersecurity can lead to data breaches, ransomware attacks, financial fraud, regulatory penalties, operational downtime, and reputational damage. Dealerships may also be required to notify affected customers, report incidents to regulators, and provide remediation services such as credit monitoring or identity theft protection.

  • What is PCI compliance for dealerships?
    Payment Card Industry (PCI) compliance refers to security standards designed to protect credit and debit card data during storage, processing, and transmission. Any dealership that accepts card payments must follow PCI requirements to help prevent fraud and payment data breaches.

  • Do dealerships need cybersecurity training for employees?
    Yes. Cybersecurity training should be mandatory for all employees who use email, handle transactions, or access dealership systems such as CRM or DMS platforms. Employee awareness is one of the most effective defenses against phishing, fraud, and social engineering attacks. Read more about the Human Firewall in our Blog.

  • How often should employees complete cybersecurity training?
    Employees should complete cybersecurity training at least annually, with additional training whenever major threats, policy changes, or new software implementations occur. Many organizations benefit from more frequent phishing simulations and refresher training throughout the year.

  • What is a dealership incident response plan?
    Cybersecurity experts suggest that all businesses should assume that they WILL be attacked. A dealership incident response plan is a documented process for detecting, containing, responding to, and recovering from cybersecurity incidents such as ransomware, phishing, or data breaches. A strong incident response plan helps reduce downtime, limit damage, and improve recovery after an attack.

AI (ARTIFICIAL INTELLIGENCE)

  • How is AI being used in automotive dealerships?
    AI is increasingly being used in automotive dealerships to improve customer experience and operational efficiency. Common use cases include lead qualification, vehicle recommendations, chatbot support, appointment scheduling, inventory analysis, marketing automation, and customer service. AI can help dealerships respond faster, improve engagement, and streamline repetitive tasks. Find out more about AI use in Dealerships here & in our Blog.

  • Can AI improve dealership cybersecurity?
    Yes. AI can improve dealership cybersecurity by helping detect unusual behavior, identify threats faster, analyze suspicious activity, and automate parts of incident response. AI-powered security tools can improve threat detection, especially for phishing, malware, and unauthorized access attempts. Read this blog to learn more about AI-powered cybersecurity solutions.

  • Can AI help detect phishing attacks?
    Yes. AI can help detect phishing attacks by analyzing email content, sender behavior, suspicious links, and unusual communication patterns. Advanced AI security tools can identify threats that traditional spam filters may miss, helping dealerships reduce phishing and business email compromise risks. See this blog to learn more about AI-powered cybersecurity solutions.

  • Is AI safe for handling customer data?
    AI can be safe for handling customer data if proper security controls are in place, but it also introduces privacy and compliance risks. Dealerships should carefully evaluate how AI tools store, process, and transmit data before using them with sensitive customer information such as financial records or personally identifiable information (PII). Read this blog to learn more about safely employing AI-powered operations for dealerships.

  • What are the cybersecurity risks of AI tools?
    AI tools can introduce risks such as data leakage, prompt injection, inaccurate outputs, unauthorized data retention, and accidental exposure of sensitive information. Any customer, financial, or proprietary dealership data entered into unsecured AI platforms could potentially be stored, processed, or exposed outside your organization. Sensitive data should always be removed or anonymized before using AI tools.

  • Should dealership employees use ChatGPT or other AI agents at work?
    Yes—but only with clear security policies and approved use cases. AI tools can improve productivity, research, and communication, but employees should never enter sensitive customer data, financial records, passwords, or proprietary dealership information into public AI platforms unless those tools are explicitly approved and secured by IT. Read more in our Blog:
    Automotive News Article: AI Tools in Dealerships Create New Attack Vectors for Cybercriminals.

EMAIL & COMMUNICATIONS

  • Why are dealership email accounts targeted by hackers?
    Dealership email accounts are attractive targets because they often contain sensitive customer data, financial information, invoices, and internal communications. Hackers frequently use compromised email accounts as an entry point for phishing, fraud, ransomware, and business email compromise attacks. Strong email security, spam filtering, employee training, and multi-factor authentication help reduce risk. Protect yourself from email scams with a comprehensive information security program, spam filters, phishing training, & by creating a human firewall.
  • What is phishing?
    Phishing is a type of cyber scam that uses fraudulent emails, messages, or websites to trick users into clicking malicious links or revealing sensitive information such as passwords, banking details, or credit card numbers. Phishing remains one of the most common ways cybercriminals gain access to dealership systems. Read more about Phishing & important tips to protect yourself from falling victim to scams in our Blog.

  • How can dealerships identify phishing emails?
    Dealership employees should watch for suspicious senders, unexpected attachments, urgent language, spelling errors, unusual payment requests, and links that do not match legitimate domains. Employees should always verify sensitive requests—especially involving wire transfers, login credentials, or financial data—before taking action. Read more about Phishing & important tips to protect yourself from falling victim to scams in our Blog.

  • Should dealerships use Microsoft 365 or Google Workspace?
    Both platforms offer strong productivity and security features, and the best choice depends on your dealership’s needs. Many dealerships prefer Microsoft 365 because of its strong integration with Windows environments, Outlook, Microsoft Teams, and OneDrive (Cloud backup). Regardless of platform, proper cybersecurity controls such as MFA, email filtering, and access management remain essential. Helion also offers a complimentary Microsoft 365 Breach Assessment to determine if your environment has been compromised.

  • How often should dealership employees change passwords?
    Employees should use strong, unique passwords and change them immediately if a compromise is suspected. Rather than forcing frequent password changes on a fixed schedule, modern cybersecurity best practices emphasize strong password policies, multi-factor authentication, and monitoring for compromised credentials.

  • Are password managers safe for dealerships?
    Yes—trusted password managers that use strong encryption are generally a secure way to store and manage passwords across multiple systems. Password managers encourage stronger, unique passwords and reduce password reuse. Dealerships should choose reputable solutions and enable multi-factor authentication for additional security.

  • What is business email compromise (BEC)?
    Business Email Compromise (BEC) is a cyberattack where criminals gain access to or impersonate trusted email accounts to trick employees into sending money, sharing sensitive data, or approving fraudulent transactions. BEC has become one of the most financially damaging cyber threats facing dealerships because these attacks often appear highly legitimate. Watch Helion founder Erik Nachbahr’s webinar to learn more about BEC & how to protect your dealership.
  • How should dealerships securely share sensitive documents?
    Sensitive documents should be shared using secure, encrypted file-sharing platforms with access controls, expiration settings, and activity tracking. Cloud platforms such as Microsoft OneDrive or secure client portals are often safer than email attachments for sharing financial or customer documents. Read more about Cloud-based computing solutions & our recommendations in our Blog.
  • Is it safe to email customer financial information?
    Email should generally not be considered a secure method for sharing sensitive financial information. Dealerships should use secure encrypted document-sharing platforms whenever possible. If email must be used, attachments should be encrypted, password-protected, and shared only with verified recipients using secure procedures.

NETWORK & INFRASTRUCTURE


Operations

  • How often should dealerships replace networking equipment?
    The replacement cycle depends on the dealership’s size, workload, and infrastructure, but most commercial-grade networking equipment should be evaluated for replacement every 3–5 years. Wireless hardware such as routers, switches, and access points may age faster as Wi-Fi standards evolve. Servers, storage systems, and other core infrastructure often remain viable for 5–7 years, though increasing performance demands may require earlier upgrades.

  • What causes slow dealership internet speeds?
    Slow internet speeds can be caused by ISP issues, outdated network hardware, excessive bandwidth usage, Wi-Fi interference, or device-specific connection problems. Dealerships should test speeds on multiple devices, inspect networking equipment, check for congestion, and confirm routers, switches, and access points are functioning properly and fully updated.

  • Should dealerships use separate guest Wi-Fi networks?
    Yes. Dealerships should always separate guest Wi-Fi from internal business networks. This helps prevent customers, visitors, or unauthorized devices from accessing systems that contain sensitive company or customer data. Guest network isolation is a basic but critical cybersecurity best practice. Also, don’t forget to password protect your guest Wi-Fi networks.

  • What is network segmentation?
    Network segmentation is the practice of dividing a network into smaller isolated segments to improve security, performance, and manageability. Segmentation helps contain threats, limit unauthorized access, and protect sensitive systems such as DMS, financial platforms, and employee devices.

  • How can dealerships improve service department connectivity?
    Dealerships can improve service department connectivity by maintaining updated hardware, optimizing Wi-Fi coverage, eliminating dead zones, and monitoring device performance. Service departments with large physical footprints may benefit from additional access points, mesh networking, or dedicated wireless infrastructure.

  • What backup systems should dealerships have during outages?
    Dealerships should maintain layered backup systems, including automatic cloud backups (such as Microsoft OneDrive), local backups, redundant storage, and battery backup systems for critical equipment. Redundancy helps ensure important files, applications, and operational data remain available during outages, cyberattacks, or hardware failures.

  • Why is uptime important for dealerships?
    Uptime is critical because dealership operations depend heavily on internet connectivity and system availability. Website outages, DMS downtime, CRM disruptions, and communication failures can directly impact lead response times, customer experience, service scheduling, and sales performance. Even short outages can result in lost revenue and reduced customer trust. Read more about improving your dealership operations experience.

Multi-Location Dealership Groups

  • How should dealership groups manage multiple rooftops?
    Dealership groups should manage multiple rooftops by standardizing infrastructure, software, security policies, and operational workflows across locations. Using consistent hardware, operating systems, software versions, and core platforms such as CRM and DMS improves efficiency, simplifies support, and reduces cybersecurity risk. A great starting point is to conduct an IT Assessment of your current organization or if your dealership network is growing, investigate the possibility of outsourcing your IT & Cybersecurity Services to a trusted partner like Helion. We currently manage daily operations for over 30,000 rooftops nationwide & our services are more affordable than you might think. Contact us for a pricing quote.

  • What are the IT challenges of dealership acquisitions?
    Dealership acquisitions often create IT challenges such as incompatible systems, inconsistent security policies, outdated hardware, fragmented user access, and integration issues between locations. Successfully onboarding new rooftops requires infrastructure assessments, system standardization, and careful migration planning. Keep in mind that cybercriminals are also watching acquisitions and looking for an opportune time to strike.

  • How can dealership groups standardize cybersecurity policies?

    Dealership groups can standardize cybersecurity by first auditing all hardware, software, users, and access permissions across locations. After identifying inconsistencies or vulnerabilities, leadership should implement unified security policies covering patch management, access control, password requirements, endpoint protection, employee training, and incident response. Start here: Conduct a Cybersecurity/IT Assessment of your current environment, and even if you have in-house IT staff, remember Cybersecurity & IT are not the same.

  • What is centralized dealership IT management?

    Centralized dealership IT management means overseeing infrastructure, support, security, and technology strategy from a single coordinated IT function across all rooftops. This approach improves consistency, reduces operational complexity, strengthens security enforcement, and simplifies troubleshooting across dealership groups. Even if you have in-house IT staff, consider outsourcing your Cybersecurity Services to a trusted partner like Helion – that way your staff can concentrate on your on-site IT needs, like hardware & desktop support.