As the end of the year approaches, it is a good time to revisit cybersecurity focus points and remind firms and their representatives of potential weaknesses. Cybersecurity is no longer a big firm program. Cyber-attacks occur from one-man shops to multibillion-dollar financial institutions.
For many firms, a remote workforce is now a new reality. Even with many states’ shelter-in-place restrictions lifting, firms are continuing with their work-from-home strategies for the majority of their staff. This transition and the related challenges have forced firms to re-evaluate their current cybersecurity and remote policies and procedures. The following considerations are important to ensure that your remote staff has the tools in place to adhere to regulatory rules, firm procedures, and best practices.
With the transition into the electronic storage of client data, Investment Advisers and Broker-Dealers are faced with more complex compliance issues regarding safeguarding client information and records. The United States Securities and Exchange Commission (“SEC”) OCIE Risk Alert from May 2019 addresses some of the issues and concerns identified with cloud-based storage and possible issues to consider regarding the protection of electronic client and business data.
FINRA has recently received notice from several FINRA member firms indicating that they have been victims of imposter websites designed to mimic their actual websites with the end goal of committing financial fraud.Read More…
FINRA warns member firms to be on the lookout for a fraudulent phishing emails that are currently circulating. Recently, member firms have reported to FINRA that they have received suspicious emails targeting their compliance personnel.