Getting Smart About Cyber

Recognizing the Risk

When it comes to managing cybersecurity risk, investment advisers are in a tough position. As the frequency and variety of cybersecurity risks mount, IT budgets and staffing do not always follow suit. Compliance and IT professionals are often asked to do more with less, which can seem overwhelming given an ever-expanding list of regulatory and business requirements as well as increased scrutiny of firms’ cybersecurity controls by third parties.

For years, smaller advisers in particular, and private fund advisers who did not process wires or maintain much personally identifiable information about natural persons, seemed to evoke a sense of invincibility in the face of growing cybersecurity threats, perhaps believing that their firms were sufficiently off the radar of hacker groups. Unfortunately, as headlines and anecdotes reveal, ransomware does not discriminate. Cyber incidents caused by negligent employees know no limits, and clients, third-party service providers, or portfolio companies may be the ultimate end targets for hackers simply using the adviser’s systems as a jumping-off point. Hopefully, advisers now are past the point of thinking they are not at risk for a cyber incident.

Want to read more?

Fill in the form below to download the full article.

Loading form...

Latest Content

Envestnet Partners with CSS to Help Advisors Meet Form CRS Filing Requirements

CHICAGO, March 24, 2020 — Envestnet, Inc. (NYSE: ENV) has entered into a strategic partnership with Compliance Solutions Strategies (CSS) to offer a comprehensive, fully customizable Form CRS software solution for registered investment advisers (RIAs) and broker-dealers to Envestnet clients. CSS’s Form CRS Automator software is designed to help firms meet the Form CRS filing requirements adopted by the … Continued

OCIE Now Conducting Exams Off-Site Unless Necessary

On March 23, 2020, the SEC’s Office of Compliance Inspections and Examinations posted an announcement on its website that “in light of health and safety concerns and other circumstances, OCIE has moved to conducting examinations off-site through correspondence, unless it is absolutely necessary to be on-site.” Similarly, over recent weeks, CSS has arranged with clients … Continued