• Toward a Culture of Continuous Cybersecurity
  • August 10, 2017 | Author: Brian L. Rubin
  • Law Firm: Eversheds Sutherland (US) LLP - Washington Office
  • Law360

    Full article

    The SEC’s Office of Compliance Inspections and Examinations (OCIE) just issued a “Risk Alert” containing the results of its Cybersecurity 2 Initiative. In their article for Law360, which analyzes the OCIE Alert, Eversheds Sutherland (US) Partners Michael Bahar and Brian Rubin write that the SEC supports the notion that effective cybersecurity is not a matter of one-and-done, but rather a senior-management led cultural shift towards a holistic, proactive, risk-based and well-practiced cyber strategy. Their article highlights the following results from the OCIE Alert as well as provides analysis on the following issues:

    • Significant progress by broker-dealers, investment advisers and fund companies
    • Areas for improvement
    • Standout firms and best practices
    • Regulatory and litigation risks