TD 2013 Live!: By overlooking security holes, advisers put clients at risk

Speaking at TD Ameritrade's annual conference, security experts cite unsecured servers and lame passwords as possible flaws

Jan 30, 2013 @ 3:37 pm

By Dan Jamieson

+ Zoom

Advisers are overlooking potentially huge holes in their data security.

From having unsecured servers to using weak passwords, advisers could be putting clients at risk, according to several security experts speaking Wednesday at TD Ameritrade Holding Corp.'s annual conference in San Diego.

“Have you locked down your server?” asked Andrew Gluck, president of Advisors4Advisors Inc., a service provider for registered investment advisers. “It should be in a server room behind lock and key. Employees should not be able to get into the server room.”

“If I can get [physical] access to your server, I can get into it in the time it takes to boot up,” said Brian Edelman, chief executive of Financial Computer Services Inc.

Advisers also should have a written data security policy and get employees to sign it, Mr. Gluck said. Remote access to client data by employees through their own laptops or tablets can be a problem when they leave, he added.

“Buy them their phones so it's a company phone,” he added. “When they terminate employment, you can take it and do what you want with it.”

Advisers should be sure that their phones have applications that will remotely wipe the devices clean if they are ever lost or stolen, Mr. Gluck and Mr. Edelman said.

They also reminded advisers not to send sensitive client information via e-mail and to beef up the strength of passwords. They recommended password managers from LastPass or RoboForm that produce and remember hard-to-crack passwords.

Strong passwords don't do any good if computers are infested with malware that tracks keystrokes, Mr. Edelman added, so advisers and their employees should avoid accessing or downloading suspect sites and software.

“Hackers really do look for the easiest targets,” Mr. Edelman said.

0
Comments

What do you think?

View comments

Recommended for you

Sponsored financial news

Featured video

Events

Beyond coding: Behind the scenes of Fuse 2017

Fuse is a one-of-a-kind event where developers from various fintech firms come together and work towards a common goal. Although the nights are long, a ton of innovation comes out of the event, as everyone has a bit of fun along the way.

Video Spotlight

Are Your Clients Prepared For Market Downturns?

Sponsored by Prudential

Recommended Video

Path to growth

Latest news & opinion

SEC's Clayton says agency is 'pushing' toward a fiduciary rule, working with DOL

While Senate hearing focused on recent cyberbreach, SEC chairman highlighted fiduciary duty as 'a priority for me.'

10 things clients say that make you cringe

Sometimes clients say stupid things. Here are 10 classics.

HighTower faces pressure to let investors cash out

After an IPO planned for last year didn't happen, the company could opt to satisfy its backers with a sale.

Envestnet to buy FolioDynamix

The deal, which is expected to close in the first quarter of 2018, will bring the total assets Envestnet works with to almost $2 trillion.

Jerry Schlichter's fee lawsuits have left an indelible mark on the 401(k) industry

After a decade of litigation, fees are lower and retirement plans are more transparent. But have the lawsuits gone too far?

X

Subscribe and Save 60%

Premium Access
Print + Digital

Learn more
Subscribe to Print