Cybersecurity: Time’s Up!

Social engineering and ransomware continue to top the list of cybersecurity threats, according to the 2016 Verizon Data Breach Investigations Report released a few weeks ago. Alarmingly, the report shows the amount of time to compromise and exfiltrate data is measured in seconds and minutes for 28.3% of cyberattacks.
Time is of the essence when a potential incident occurs. When you have mere seconds to make a decision on how to contain and mitigate an attack, it is critical to have a robust incident response plan in place and to test it periodically to ensure that all staff know their roles and responsibilities.

Ascendant has created incident response plans for advisers of various shapes and sizes, and a key element to each one has been establishing clear lines for reporting and prompt escalation. I am thrilled that we will be featuring an interactive incident response planning session at our upcoming national compliance conference in San Diego, California in September 2016.  Even firms who have adopted a solid incident response plan can benefit from incident response planning exercises – because the change in a single fact may alter the course of action you should take. But don’t take my word for it. As Verizon’s annual data breach report states, you have time. Three minutes and 45 seconds, to be exact.*

(*Median time from when a social engineering test is conducted to when the first recipient clicks to open the would-be malicious attachment).

Related Content

Latest Content

Evolution of Fiduciary Rules Begins to Take Shape in SEC

On April 18, 2018, the SEC voted to propose several new rules and reforms related to fiduciary standards. The package intends to raise and clarify standards of conduct for broker-dealers and investment advisers, and to provide clarity regarding fees, conflicts and other material matters. It also aims to ensure that the standards can be understood … Continued

Insurance Considerations for Investment Advisers

How much coverage is enough? What types of insurance policies do you need? Whether you are starting an investment advisory practice, launching a new line of business, or reevaluating your existing risks, there are critical questions to ask to make sure you understand the various ways to protect your firm. Join us for a practical … Continued

Fifth Circuit Weighs In on DOL Fiduciary Rule

A panel of the U.S. Court of Appeals for the Fifth Circuit has vacated the Department of Labor’s Fiduciary Rule. In a 2-1 split, the Fifth Circuit’s decision overrules a Dallas District Court’s decision, which had previously upheld the rule. Unfortunately, the decision does little to settle the fate of the beleaguered rule. Although it … Continued

SEC Proposes Amending Investment Company Liquidity Disclosures in Forms N-PORT and N-1A

On March 14, 2018, the Securities and Exchange Commission (“SEC”) proposed amendments to the mutual fund liquidity-related disclosure requirements. Specifically, the proposal: Adds a new requirement to “briefly discuss the operation and effectiveness of the Fund’s liquidity risk management program during the most recently completed fiscal year” in the Fund’s Management Discussion of Fund Performance … Continued

Paradigm Shift in SEC Exams, Benefits of a Mock Exam

For investment advisers currently going through an SEC exam, the process likely bears little resemblance to exams of old. Call it the new normal, a paradigm shift, or simply the effects of the SEC having to do more with less, but anecdotal evidence among those now experiencing the exam process suggests some interesting new trends. … Continued

Mailing List

Subscribe to the Ascendant Compliance email list for the latest compliance resources, conferences, ComplianceCasts™, and more.

Loading form...

Contact Us

Ascendant works together with clients to identify and assess critical needs through customized plans. If you need assistance with compliance functions, regulatory services, cybersecurity or technology tools, we’d love to speak with you.