/regulation & compliance

News and resources on regulation, compliance, legal and governance issues for banks and fintechs.

Morgan Stanley fined $60m over data centre decommissioning failures

The Office of the Comptroller of the Currency (OCC) has hit Morgan Stanley with a $60 million penalty for failing to properly decommission two wealth management data centres in 2016.

1 comment

Morgan Stanley fined $60m over data centre decommissioning failures

Editorial

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

The OCC says that Morgan Stanley failed to "effectively assess or address risks" associated with decommissioning its hardware at the two US sites.

The bank is also accused of not doing its due diligence in selecting a vendor to carry out the decommissioning work and then failing to monitor the vendor's performance and of failing to maintain appropriate inventory of customer data stored on the decommissioned hardware.

In addition, the OCC says Morgan Stanley had similar vendor management issues in 2019 when it decommissioned other devices storing customer data.

The bank says it does not believe any client information has been accessed but that it has boosted its security procedures and informed clients of the lapse.

Sponsored [New Survey Report] The Global Fight Against Trade-Based Financial Crime

Comments: (1)

A Finextra member 

Wow,image that,repeat offender!

[New Report] Payments Modernisation: The Big Survey 2024Finextra Promoted[New Report] Payments Modernisation: The Big Survey 2024