6. Create cybersecurity jobs and train staff
The SEC wants to know where principal responsibility for overseeing cybersecurity resides within an advisory firm. For large firms, that may mean hiring new cybersecurity staff, or for small firms, outsourcing the job to an expert, according to Andy Zolper, senior vice president and chief IT security officer for Raymond James Financial Inc.
“Cybersecurity skills can be difficult to come by,” he warned. “It’s a competitive job market. It can be hard for small firms to recruit, but there are service providers in security that can help offset that.”