Cybersecurity on the Green: PGA of America and LevelBlue are Driving for Success

Golf facility security teams must approach their job as if every day is the final round of The Championship.

Without fail, IT teams must do the cybersecurity equivalent of walking the course and filling in their yardage book. However, where a caddie and his or her player check distances to hazards, security teams look for unpatched systems, golfers study how greens are set up, security teams examine the threat landscape.

Recently, LevelBlue became the equivalent of the PGA of America’s cybersecurity caddie. In the same manner, a caddie offers advice on what club to use, LevelBlue is now on hand as the Official Cybersecurity Advisor of the PGA of America to supply practical cybersecurity advice and solutions to the PGA of America’s membership.

The two organizations recently came together at the 2026 PGA Show in Orlando to discuss the cybersecurity threat landscape confronting the golf industry during a panel entitled Cybersecurity on the Green.

The session featured Nick Simmons, Strategic Partnerships, LevelBlue, Kevin Scott, CTO, PGA of America; and Kory Daniels, Chief Security and Trust Officer, LevelBlue. The conversation centered on the evolving digital landscape of the golf industry, the critical need for robust defense mechanisms, and why the PGA of America chose LevelBlue to be its primary cybersecurity provider.

The Evolution of Risk in Golf

The opening discussion addressed the "why" behind a cybersecurity presence at a golf-centric event. Scott highlighted that the modern golf environment is no longer just about grass and clubs; it is a complex technological ecosystem and one that is under attack. As the CTO of the PGA, Scott oversees a vast "footprint" that includes ERP and CRM systems for 1,000 staff members, as well as external-facing apps, websites, and databases.

Kory Daniels expanded on this by noting broader industry trends, specifically the rapid adoption of Artificial Intelligence (AI) and data analytics. He compared the shift to Formula One and manufacturing, where "digital twins" of courses and golfers are created. While these technologies offer competitive advantages, they also expand the attack surface, the total number of points where an unauthorized user can enter or extract data.

The PGA’s Journey to LevelBlue

Scott also shared the rigorous process the PGA underwent to secure a cybersecurity partner. He noted that despite being a high-profile brand, the PGA of America operates as a not-for-profit trade association with limited internal tech resources. To find the right fit, the organization conducted an RFP process involving 170 different companies.

LevelBlue was selected as the top choice due to its flexibility. Scott emphasized that the PGA’s corporate infrastructure is unique, and they required a partner that could adapt to their specific architecture rather than offering a "one-size-fits-all" solution. The partnership is designed to protect the PGA’s brand reputation and the data of its millions of members.

Modern Threats: Beyond the Inbox

The panel moved into the specific nature of modern cyber threats. While email phishing remains a primary vector, Daniels pointed out that the Internet of Things (IoT) has introduced new vulnerabilities. He cited "internet-connected lawnmowers" and facility management systems as examples of "doors and windows" that threat actors can exploit.

Key Threat Actors and Motivations:

• Financial Motivation: Hackers seek the "path of least resistance" to maximize profit, often through ransomware.
• Intelligence Gathering: Foreign actors (specifically China and Russia) target the personal profiles and data of high-profile individuals in the golf community.
• Targeted Attacks: The industry has moved from "spraying and praying" (random attacks) to highly focused campaigns against golf operators and communities.

The Impact of a "Bad Day"

Daniels painted a vivid picture of a cyber-catastrophe: an operator arriving at work to find their systems locked by a $1 million Bitcoin ransom demand. This double-extortion methodology of locking systems while threatening to leak member data on the dark web can paralyze cash flow, disrupt tee times, and ruin events like weddings or tournaments.

Scott noted that for the PGA, the risk is less about daily e-commerce downtime and more about reputational integrity. The loss of trust from members whose personal identifiable information (PII) is compromised is a primary concern.

Actionable Strategies for Operators

The discussion concluded with practical advice for golf course owners, pros, and board members. Daniels emphasized "minimum viable hygiene" to protect assets:

1. Governance: Having regular board-level conversations about situational awareness and risk readiness.

2. Multi-Factor Authentication (MFA): Daniels compared MFA to seatbelts, a basic requirement that many organizations still lack.

3. Resilience Planning: Preparing for how to operate during a disruption, whether caused by a malicious actor or a simple technical failure.

4. Education: Training staff to recognize increasingly sophisticated, AI-generated phishing emails that may appear highly personalized.

The partnership between LevelBlue and the PGA of America signals a turning point for the industry. By bringing cybersecurity to the forefront of the PGA Show, the organizations aim to "keep the golf industry in play." The message to attendees was clear: cybersecurity is no longer a luxury for the "tech-savvy," it is a fundamental requirement for business continuity and member trust in 2026.

Don’t get caught not understanding the course that you play every day. Let LevelBlue be your cybersecurity caddie.

Please contact us for more information on how LevelBlue can help secure your organization from cyber threats.