SEC Announces Areas of Focus for 2015 Cybersecurity ExaminationsDownload
The Securities and Exchange Commission’s Office of Compliance Inspections and Examinations recently issued a Risk Alert providing information on the areas of focus for the SEC staff’s second round of cybersecurity examinations of registered investment advisers and broker-dealers. The examinations will focus on key topics including governance and risk assessment, access rights and controls, data loss prevention, vendor management, training and incident response. To assist firms in assessing their cybersecurity preparedness, the SEC staff included a sample document request in the Risk Alert. The entire Risk Alert is available here.