3. Read the SEC's risk alert
Before your firm takes new action on its cybersecurity policies and procedures, you may want to read the SEC’s April 15 cybersecurity risk alert, said Michael Sundberg, director of information security for Commonwealth Financial Network.
“The risk alert seemed to cover a large landscape of information security,” he said. “The threats continue to evolve, and our security continues to evolve to counter the newest and greatest threats.”