Cybersecurity weaknesses worry state RIA regulators

More than 698 deficiencies found in 1,200 exams, says NASAA.
SEP 25, 2017

More than 1,200 coordinated examinations of state-registered investment advisers by state securities examiners in 37 jurisdictions uncovered 698 deficiencies involving cybersecurity, the North American Securities Administrators Association (NASAA) said. In examinations conducted between January and June 2017, NASAA said the top five cybersecurity deficiencies found by state examiners were: nonexistent or inadequate cybersecurity insurance, no testing of cybersecurity vulnerability, lack of procedures regarding securing or limiting access to devices, no technology specialist or consultant, and a lack of procedures regarding hardware and software updates or upgrades. At the group's annual meeting this week in Seattle, Mike Rothman, NASAA president and Minnesota's commissioner of commerce, said the group has created a tool for state-registered investment advisers to help them assess their cybersecurity preparedness. Called the NASAA Cybersecurity Checklist for Investment Advisers, it includes 89 assessment areas to help identify, protect and detect cybersecurity vulnerabilities, and to respond to and recover from cyber events. Overall, the group said that 1,203 reported examinations of state-registered investment advisers uncovered 7,907 deficiencies in 25 compliance areas, compared to 4,983 deficiencies in 22 compliance areas uncovered by 1,170 examinations in 2015. This sample data from state securities examiners is collected every two years and reported voluntarily to NASAA's investment adviser operations project group. Ranked by number of deficiencies found, books and records (2,625 deficiencies) continued to be the most problematic compliance area, followed by registration (1,165 deficiencies), contracts (921), cybersecurity (698) and custody matters (364). State securities regulators have regulatory oversight responsibility for investment advisers with assets under management of $100 million or less.

Latest News

Caprock expands Texas footprint with $4B Venturi acquisition
Caprock expands Texas footprint with $4B Venturi acquisition

Deal brings 10 advisors and deeper family office reach to Austin market.

Mariner aims to ‘break growth ceiling’ by deploying AI workforce of 700
Mariner aims to ‘break growth ceiling’ by deploying AI workforce of 700

Mega-RIA to adopt AI workforce at enterprise scale as firm rethinks growth without hiring.

Goldman leads wave of prediction market bans at financial firms
Goldman leads wave of prediction market bans at financial firms

As Goldman Sachs tightens rules on event contract trading, RIAs and hedge funds are weighing their own policies

Advisor moves: Baird recruits $600M veteran pair to director roles in North Carolina
Advisor moves: Baird recruits $600M veteran pair to director roles in North Carolina

Meanwhile, Wells Fargo lures defectors from UBS and JPMorgan to expand in the East Coast, while another bank aligns itself with RayJay's financial institutions division.

AI may be nudging some older workers into early retirement, study finds
AI may be nudging some older workers into early retirement, study finds

New research suggests AI-exposed workers over 55 are leaving jobs more often than before ChatGPT’s rise.

SPONSORED Direct indexing webinar targets tax-loss harvesting amid market swings

Northern Trust’s Ken Lassner shows advisors how to convert volatility into after-tax portfolio gains

SPONSORED Who builds the income when the pension disappears?

Dan Biagini of American Equity says the steady decline of pensions, longer lifespans and a reset in interest rates are rewriting how advisors build retirement income