Posts By: E.J. Yerzak

How Can a Small Advisory Practice Economically Be as Cyber-Secure as Possible?

Cybersecurity is a risk that applies to firms both large and small without discrimination. Even very small advisory firms, which I’ll define as having one to five staff for purposes of this discussion, have a wealth of information worth safeguarding. Cybercrime is often a crime of opportunity. Hackers are metaphorically going door to door (computer … Continued

SEC Begins Cyber Sweep of Investment Advisers with Focus on Cloud Storage

A sweep of investment advisers is underway by the U.S. Securities and Exchange Commission, which has sent out many letters to firms over the last week requesting information about their use of cloud providers. The move could be part of the SEC’s Phase 3 Cybersecurity Exam Initiative, and is likely related to the April Regulation … Continued

What Happens When Your CRM is Breached?

Even your client relationship management (CRM) software may not be safe from hackers. That’s the lesson some advisers are learning after an announcement by CRM vendor Redtail that it discovered in March 2019 that its cloud-based software had left some sensitive client data publicly accessible. The data left vulnerable included first names, last names, addresses, … Continued

Coming to America – California Adopts GDPR-Like Privacy Regulation

After a number of firms struggled last year to get their marketing and information systems into compliance with the EU’s General Data Protection Regulation (GDPR), advisers to U.S. clients will soon be facing similar requirements on the home front. On the heels of the Cambridge Analytica scandal, California enacted the California Consumer Privacy Act of … Continued

California Privacy Law Brings ‘GDPR-Lite’ to the U.S.

In what has become an ongoing race among states to have the toughest privacy regulation in the U.S., California has jumped to the front. On June 28, 2018, California’s legislature unanimously passed a privacy bill that was later signed by Governor Jerry Brown, which simultaneously strengthens privacy protections for California residents while possibly mooting an … Continued

Advisers Beware: FBI “Operation WireWire” Shows Firms Increasingly Being Targeted Using SEC Filings

CSS has observed more and more investment advisers falling victim to Business Email Compromise, or “BEC” schemes over the past year. Unfortunately, they are in good company, as the trend is consistent with a worldwide increase in such attacks by increasingly skilled hacker networks around the world. On June 10, 2018, the FBI announced in … Continued

For Cryptocurrency and Blockchain, a Reckoning is Coming

 NOTE: Ascendant Director of Cyber IT Services E.J. Yerzak recently spoke at the AIM Summit in Abu Dhabi, a conference that targets alternative investment managers. The following is a brief summary of his key comments during his two sessions, “Primer on Crypto Currency, Distributed Ledger Technology and ICO’s,” and “Legal & Regulatory Insights/AML – Blockchain” … Continued


Subscribe to CSS Blog

CSS frequently publishes blog posts which are written by our team from their observations in the field, at conferences and through experiences with compliance professionals. These posts are designed to further knowledge and share industry best practices. Topics run the gamut, including Form ADV, cybersecurity, MiFID II, position limit monitoring, technology challenges and more. Complete and submit the brief form below to receive notifications when we publish new content.

Loading form...

Mailing List

Loading form...