Bank Systems & Technology is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Security

05:40 PM
Joe Stanganelli
Joe Stanganelli
Slideshows
Connect Directly
Twitter
LinkedIn
Google+
RSS
E-Mail
50%
50%

SEC Cyber-Security Sweep: Good News, Bad News

In the wake of the SEC's cyber security examinations and a subsequent report, three causes for celebration and three serious action items have emerged from the SEC's recent cyber security examinations. These illustrate where the financial services industry should focus its information security efforts.
3 of 8

Bad News: No Liability Plans
It's nice that broker-dealers and investment advisers have policies and procedures in place for prevention of - and in some cases recovery from - a data compromise. But the vast majority of those examined by the OCIE have failed to consider a fundamental aspect to the cyber-attack post-mortem: Figuring out who is going to pay for it.
Just over half of the examined broker-dealers (58%) - and a mere 21% of the examined investment advisers - maintain a cyber insurance policy. And cyber insurance is but the beginning when it comes to good cyber liability planning.
Further, 70% of broker-dealers and 87% of investment advisers have no written provisions whatsoever for how to determine their own liability for client losses. Only a tiny percentage of the organizations examined (15% of broker-dealers, 9% of investment advisers) offer their clients any security guarantees against cyber losses whatsoever.
(Image Source: Geralt via Pixabay)

Bad News: No Liability Plans

It's nice that broker-dealers and investment advisers have policies and procedures in place for prevention of and in some cases recovery from a data compromise. But the vast majority of those examined by the OCIE have failed to consider a fundamental aspect to the cyber-attack post-mortem: Figuring out who is going to pay for it.

Just over half of the examined broker-dealers (58%) and a mere 21% of the examined investment advisers maintain a cyber insurance policy. And cyber insurance is but the beginning when it comes to good cyber liability planning.

Further, 70% of broker-dealers and 87% of investment advisers have no written provisions whatsoever for how to determine their own liability for client losses. Only a tiny percentage of the organizations examined (15% of broker-dealers, 9% of investment advisers) offer their clients any security guarantees against cyber losses whatsoever.

(Image Source: Geralt via Pixabay)

3 of 8
Register for Bank Systems & Technology Newsletters
Slideshows
Video
Bank Systems & Technology Radio
Archived Audio Interviews
Join Bank Systems & Technology Associate Editor Bryan Yurcan, and guests Karen Massey and Jerry Silva from IDC Financial Insights, for a conversation about the firm's 11th annual FinTech rankings.