Getting Smart About Cyber

Recognizing the Risk

When it comes to managing cybersecurity risk, investment advisers are in a tough position. As the frequency and variety of cybersecurity risks mount, IT budgets and staffing do not always follow suit. Compliance and IT professionals are often asked to do more with less, which can seem overwhelming given an ever-expanding list of regulatory and business requirements as well as increased scrutiny of firms’ cybersecurity controls by third parties.

For years, smaller advisers in particular, and private fund advisers who did not process wires or maintain much personally identifiable information about natural persons, seemed to evoke a sense of invincibility in the face of growing cybersecurity threats, perhaps believing that their firms were sufficiently off the radar of hacker groups. Unfortunately, as headlines and anecdotes reveal, ransomware does not discriminate. Cyber incidents caused by negligent employees know no limits, and clients, third-party service providers, or portfolio companies may be the ultimate end targets for hackers simply using the adviser’s systems as a jumping-off point. Hopefully, advisers now are past the point of thinking they are not at risk for a cyber incident.

Fill in & submit the form below to download this Whitepaper

Thank you!

Your download will appear below momentarily.

Download Now.

Latest Content

Texas Outlaws and a Silver Bullet: Position Limits in the USA

In this first installment on position limits, Regulatory Guidance expert Greg Hotaling surveys the current landscape of position limits imposed for U.S.-listed commodity derivative holdings, which can affect investment firms and other speculative investors regardless of where they are based. Stay tuned for coverage of EU position limits in the next edition. “Who shot J.R.?!” … Continued

FAQs From the Cyber Desk

Cybersecurity is a fast-moving target, so it is not uncommon for firms to have questions when it comes to assessing and understanding their cybersecurity risks. Here at CSS we receive a lot of cybersecurity questions, so we thought we would take the time to answer 10 of the most common Frequently Asked Questions. (1) What … Continued

EU Position Limits: Born in the USA?

This is the second installment of Regulatory Guidance Expert Greg Hotaling’s blog on position limits, this time addressing EU-listed commodity derivatives and related products.  As always, keep in mind that these limits can apply to asset managers, and other market participants, regardless of where they are based. In 2009, the European Union’s first comprehensive position … Continued