The presidential election as well as the current composition of the SEC has potential impacts for many regulations, including one of the biggest new rule proposals from the SEC: Rule 206(4)-4. With implications for both compliance and operations, the rule … Read more
NIST has proposed an update to its Cybersecurity Framework to address service provider oversight
Some SEC exams might not focus on cyber at all, but the ones that do are likely to now include a more in-depth examination of it.
New York’s 23 NYCRR 500 Cybersecurity rule goes into effect on March 1, 2017 requiring banks and other financial services companies to establish and maintain a cybersecurity program designed to protect consumers and ensure the safety and soundness of the state’s financial services industry.
If you were asked to describe a hacker, what image comes to mind? If you’re like most, you are probably picturing unintelligible text flying across a monitor as young men in black hoodies attempt to break into networks, engaging in a very technical dance and speaking in terms the average layperson would not understand.
The SEC has expanded its cybersecurity examinations to include testing of firms’ implementation of procedures and controls
In a first for the country’s growing body of state breach notification laws, Tennessee has recently amended its law to require notification even if the information subject to a breach was encrypted, and regardless of whether the encryption key itself … Read more
For some attacks, the amount of time to compromise and exfiltrate data is measured in seconds. Time is of the essence when a potential incident occurs.
Introduction Financial services are target No. 1. That was confirmed in a 2014 SEC cybersecurity roundtable when Larry Zelvin, then a top cybersecurity official of the U.S. Department of Homeland Security, laid out the agency’s rankings of the nation’s most … Read more
Introduction Think cybersecurity breaches won’t happen to your firm? It may be time to reconsider. Cybersecurity breaches are becoming much more common at investment advisers than firms may realize. While the industry is certainly buzzing about cybersecurity as the latest … Read more