SEC OCIE to Launch a Third Cybersecurity Sweep

by: Align on Mar, 29, 2019 | 0 Comments
 hero Image

The Securities and Exchange Commission’s (SEC’s) Office of Compliance Inspections and Examinations (OCIE) has launched a third cybersecurity sweep, announced by deputy director Kristin Snyder, on March 19th at the Investment Company Institute’s 2019 Mutual Funds and Investment Management Conference in San Diego, California.

The third cybersecurity sweep will focus primarily on cybersecurity practices at investment advisers, encompassing firms with multiple branch offices and those involved in recent merger and acquisitions (M&As). Because of the fundamental and operational changes firms experience during M&A, complexities arise, risk exposure increases and vulnerabilities surface if cybersecurity is not addressed on the onset and with a comprehensive approach.

SEC-Risk-Alert-Banner

This reverberates with the SEC’s 2019 examination priorities, whereupon the agency communicated it would emphasize these focal areas at advisers and urged them to actively and effectively manage cyber-related issues and operational risk.

Align Guidance

Align recommends that all investment advisers with multiple branch offices and those who experienced recent mergers, or other business combinations, should focus their efforts on the “cyber six,” which includes:

  • Governance
  • Access Rights and Controls
  • Data Loss Prevention
  • Vendor Management
  • Employee Training
  • Incident Response

Furthermore, Align extrapolates from this that private equity firms that are integrating the IT structure of their portfolio companies will be of similar interest and certainly on the SEC’s radar.

Align continues to monitor all regulatory activity related to cybersecurity inquiries and examinations. If you have any questions, please contact our cybersecurity specialists today.

Contact Us ➜

Tags: Cybersecurity, Managed Services

Related Articles

 
Cybercriminals Targeting C-Suite

Cybersecurity

Cybercriminals Targeting C-Suite

As stated in Verizon's 2019 Data Breach Investigations Report (DBIR), C-suite executives are the

Read More >

How Fund Managers Can Prepare for the Latest SEC OCIE Cyber Sweeps

Cybersecurity

How Fund Managers Can Prepare for the Latest SEC OCIE Cyber Sweeps

The following excerpt originally appeared in Hedge Fund Law Report and was written by Amy Terry

Read More >

Leave A Comment