TD 2013 Live!: By overlooking security holes, advisers put clients at risk

Speaking at TD Ameritrade's annual conference, security experts cite unsecured servers and lame passwords as possible flaws

Jan 30, 2013 @ 3:37 pm

By Dan Jamieson

Advisers are overlooking potentially huge holes in their data security.

From having unsecured servers to using weak passwords, advisers could be putting clients at risk, according to several security experts speaking Wednesday at TD Ameritrade Holding Corp.'s annual conference in San Diego.

“Have you locked down your server?” asked Andrew Gluck, president of Advisors4Advisors Inc., a service provider for registered investment advisers. “It should be in a server room behind lock and key. Employees should not be able to get into the server room.”

“If I can get [physical] access to your server, I can get into it in the time it takes to boot up,” said Brian Edelman, chief executive of Financial Computer Services Inc.

Advisers also should have a written data security policy and get employees to sign it, Mr. Gluck said. Remote access to client data by employees through their own laptops or tablets can be a problem when they leave, he added.

“Buy them their phones so it's a company phone,” he added. “When they terminate employment, you can take it and do what you want with it.”

Advisers should be sure that their phones have applications that will remotely wipe the devices clean if they are ever lost or stolen, Mr. Gluck and Mr. Edelman said.

They also reminded advisers not to send sensitive client information via e-mail and to beef up the strength of passwords. They recommended password managers from LastPass or RoboForm that produce and remember hard-to-crack passwords.

Strong passwords don't do any good if computers are infested with malware that tracks keystrokes, Mr. Edelman added, so advisers and their employees should avoid accessing or downloading suspect sites and software.

“Hackers really do look for the easiest targets,” Mr. Edelman said.

0
Comments

What do you think?

View comments

Recommended for you

Featured video

INTV

How did we pick this year's 40 under 40 winners?

Special projects editor Liz Skinner and editor Fred Gabriel say efforts to improve the financial advice industry and the promise of future success factored heavily in candidate selection.

Latest news & opinion

Merrill re-evaluates commission ban in retirement accounts

The wirehouse's wealth management group announces a fresh look at the ban now that the DOL rule is on the brink of death.

10 biggest retirement mistakes

Adhere to enrollment deadlines and distribution rules or pay a hefty penalty.

DOL fiduciary rule on brink of death as key deadline passes

Justice Department didn't petition the Supreme Court to rehear the case. A mandate from the 5th Circuit would finally lay the fiduciary rule to rest.

Finra to overhaul broker information system, cut compliance costs for broker-dealers

The move is intended to cut compliance costs for firms as well as make the registration and disclosure process more efficient.

SEC rule proposal doesn't include 401(k) sponsors in 'best interest' advice

Plan sponsors are left out of the equation because they don't appear to fall within the definition of "retail" investor, legal experts say.

X

Hi! Glad you're here and we hope you like all the great work we do here at InvestmentNews. But what we do is expensive and is funded in part by our sponsors. So won't you show our sponsors a little love by whitelisting investmentnews.com? It'll help us continue to serve you.

Yes, show me how to whitelist investmentnews.com

Ad blocker detected. Please whitelist us or give premium a try.

X

Subscribe and Save 60%

Premium Access
Print + Digital

Learn more
Subscribe to Print