Investment advisers may soon have a new cybersecurity reporting requirement from a federal regulator. Anti-money laundering (“AML”) requirements have recently been interpreted to include cybersecurity suspicious activity reporting (“SAR”) requirements, so if AML obligations – which are on the horizon – are extended to investment advisers, then these newly articulated cybersecurity reporting obligations will follow.
Michael L. Yaeger
The Bangladesh Bank Hack and Compliance Programmes
Unknown hackers robbed more than $100 million from Bangladesh’s central bank in February 2016, and the losses would have been even worse if other banks hadn’t blocked 31 of the attempted wire transfers because they suspected money laundering.
Click here to read this article, in which SRZ special counsel Michael L. Yaeger and associates Melissa…
Securities, Futures Regulators Increase Scrutiny, Expectations on Cybersecurity
Financial regulators are emphasizing the risk poor cybersecurity poses to market integrity and financial stability, and elaborating on policies and controls they expect the firms they oversee to have in place. Investment managers’ responsibility for cybersecurity has grown like compound returns. The SEC’s Office of Compliance Inspections and Examinations disclosed that its examination staff would…
Cybersecurity Update: Takeaways from OCIE’s Examination Initiative and the NFA’s Rulemaking Proposal
As the end of 2015 approaches, financial regulators continue to emphasize the risk that poor cybersecurity poses to market integrity and financial stability, and to elaborate on the policies, procedures and controls they expect investment advisers, commodity pool operators and registered investment companies to have in place.
Click here to read more.
New SEC Cybersecurity Guidance
Cybersecurity continues to be a priority for the Securities and Exchange Commission (SEC). The SEC’s Office of Compliance Inspections and Examinations conducted a cybersecurity “sweep” examination in 2014 and released a summary of its results in early 2015. The SEC’s Division of Investment Management — which regulates investment companies and investment advisers — has now…
Q&A: Legal Defences
As cybersecurity continues to remain a key focus for hedge funds, there is a growing number of questions surrounding the associated legal issues and requirements. Click here to read the interview with HFMTechnology, in which SRZ partners Marc E. Elovitz and Brian T. Daly and special counsel Michael L. Yaeger discuss some of the challenges…
Proactively Addressing Hedge Fund Cybersecurity Risks
Click here to read this Q&A with The Hedge Fund Journal in which SRZ partner Marc E. Elovitz and special counsel Michael L. Yaeger talk about the growing need for cybersecurity policies for hedge funds, both in light of recent regulatory attention and the increasingly prominent attacks on major corporations.
Information Security: Obligations and Expectations
Information security is not only a good idea — it is also a legal obligation. Federal and state laws impose obligations on businesses, including investment advisers, to keep their data secure. Most of these laws focus on requiring businesses to take reasonable security measures. While it may take regulators and courts years to clearly define…
New SEC Cybersecurity Guidance: What It Means for Fund Managers
Cybersecurity continues to be a priority for the Securities and Exchange Commission. The SEC’s Office of Compliance Inspections and Examinations conducted a cybersecurity “sweep” examination in 2014 and released a summary of its results in early 2015. The SEC’s Division of Investment Management — which regulates investment companies and investment advisers — has now issued…
SEC Cybersecurity Update: OCIE Risk Alert Provides Insights for Private Fund Managers on SEC Cybersecurity Examinations
Earlier this week, the SEC’s Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert providing observations derived from its “Cybersecurity Examination Initiative,” which was announced on April 15, 2014. The Risk Alert is based on OCIE’s examinations of the cybersecurity policies and practices of 57 registered broker-dealers and 49 registered investment advisers. While…