ARTICLE
23 August 2017

OCIE Highlights Areas For Firms To Improve Cybersecurity Practices

KL
Herbert Smith Freehills Kramer LLP

Contributor

Herbert Smith Freehills Kramer LLP logo
Herbert Smith Freehills Kramer is a world-leading global law firm, where our ambition is to help you achieve your goals. Exceptional client service and the pursuit of excellence are at our core. We invest in and care about our client relationships, which is why so many are longstanding. We enjoy breaking new ground, as we have for over 170 years. As a fully integrated transatlantic and transpacific firm, we are where you need us to be. Our footprint is extensive and committed across the world’s largest markets, key financial centres and major growth hubs. At our best tackling complexity and navigating change, we work alongside you on demanding litigation, exacting regulatory work and complex public and private market transactions. We are recognised as leading in these areas. We are immersed in the sectors and challenges that impact you. We are recognised as standing apart in energy, infrastructure and resources. And we’re focused on areas of growth that affect every business across the world.
Explore Firm Details
The SEC's Office of Compliance Inspections and Examinations issued a risk alert outlining observations related to the cybersecurity practices observed during the course of its examinations.
United States Technology
Ann Kalodis
Your Author LinkedIn Connections

The SEC's Office of Compliance Inspections and Examinations (OCIE) issued a risk alert outlining observations related to the cybersecurity practices observed during the course of its examinations. The examinations focused on the written policies and procedures regarding cybersecurity at 75 firms, while also seeking a better understanding of how firms managed cybersecurity preparedness. Although it acknowledged firms' cybersecurity preparedness had improved since 2014, OCIE noted several areas for potential improvement. Specifically, it suggested that broker-dealers and firms could do better at ensuring all required system patches are updated and installed on a timely basis, maintaining incident response plans to be followed in the event of a breach and formalizing supervisory procedures related to transfers to third-party accounts. Link To Article

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Authors
Person photo placeholder
Ann Kalodis
Your Author LinkedIn Connections
See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More