$10M penalty vs. NYSE parent goes too far, say SEC commissioners

$10M penalty vs. NYSE parent goes too far, say SEC commissioners
Two dissenting voices from the federal regulator warned the penalty could create "a counter-productive dynamic" with its regulated entities.
MAY 23, 2024

Two leaders at the SEC have spoken out against the regulator's multimillion-dollar penalty against Intercontinental Exchange, the parent firm of NYSE, and its subsidiaries over a failure to promptly report a breach in its data security protocols.

SEC Commissioners Hester Peirce and Mark Uyeda have criticized the $10 million penalty imposed on Intercontinental Exchange for failing to report a cyber intrusion in accordance with Regulation SCI.

The fine relates to a data security incident in April 2021, which the subsidiaries of Intercontinental Exchange did not promptly report to the SEC. ICE maintains that the impact of the incident was minimal, with a spokesperson calling it a "failed incursion [that] had zero impact on market operations."

Peirce and Uyeda expressed concerns over the size of the penalty, arguing that it far outweighed the gravity of the violation.

"This disproportionately large penalty for failure to report in a timely manner an incident that the ICE SCI subsidiaries ultimately determined was de minimis suggests to us that the Commission is more concerned with generating large penalties than with ensuring that important market entities address technological vulnerabilities," they said in a joint statement.

The timeline of events shows that Intercontinental Exchange identified a potential cyber-attack on April 15, 2021, and confirmed it the following day. By April 20, the company had classified the intrusion as de minimis and logged it for quarterly reporting.

When SEC staff contacted the subsidiaries on April 22, the company provided information about the intrusion but noted it was insignificant. Despite this, the SEC issued a significant penalty for not adhering to the reporting requirements.

Peirce and Uyeda warned that heavy-handed responses to small infractions could create a disharmonious relationship between the SEC and industry.

"Imposing outsized penalties for minor violations risks creating a counter-productive dynamic between the Commission and regulated entities," the pair stated.

They also highlighted the potential impact on the public's perception of the SEC’s regulatory focus, emphasizing that the agency should prioritize real-world harm over technical compliance.

The commissioners voiced their concern that the emphasis on severe penalties might shift the SEC’s role from collaborative to punitive.

"It would not be surprising if the inordinate focus on technical compliance, as opposed to real-world harm, affects the way the public views the Commission’s regulatory agenda and how it is likely to be implemented," they noted.

Latest News

Five-person Raymond James team jumps to Janney in Maryland
Five-person Raymond James team jumps to Janney in Maryland

The group led by a 37-year industry veteran brings $470 million in assets to the Philadelphia-based broker dealer.

$20B Merit looks to next phase as Constellation takes minority stake
$20B Merit looks to next phase as Constellation takes minority stake

The Atlanta, Georgia-based national wealth firm revealed its new PE partner as prior backers Wealth Partners Capital Group and HGGC’s Aspire Holdings exited their investments.

$350M father-son duo hops from Osaic to Equitable Advisors
$350M father-son duo hops from Osaic to Equitable Advisors

The latest departures in Ohio mark another setback for the hybrid RIA, which is looking to "expanding its presence across all models and segments of the wealth management industry.”

Fresh off HPS acquisition, BlackRock inks deal for $7.3B ElmTree Funds
Fresh off HPS acquisition, BlackRock inks deal for $7.3B ElmTree Funds

The St. Louis-based real estate investment firm gives the asset management giant a valuable access point to the roughly $1 trillion net lease market.

SEC charges Chicago-based investment adviser with overbilling clients more than $2.5M in fees
SEC charges Chicago-based investment adviser with overbilling clients more than $2.5M in fees

Eliseo Prisno, a former Merrill advisor, allegedly collected unapproved fees from Filipino clients by secretly accessing their accounts at two separate brokerages.

SPONSORED How advisors can build for high-net-worth complexity

Orion's Tom Wilson on delivering coordinated, high-touch service in a world where returns alone no longer set you apart.

SPONSORED RILAs bring stability, growth during volatile markets

Barely a decade old, registered index-linked annuities have quickly surged in popularity, thanks to their unique blend of protection and growth potential—an appealing option for investors looking to chart a steadier course through today's choppy market waters, says Myles Lambert, Brighthouse Financial.