20 August 2017
Find out more

Finra issues report on cybersecurity practices

04 February 2015  |  2254 views  |  0 Source: The Financial Industry Regulatory Authority (FINRA)

The Financial Industry Regulatory Authority (FINRA) issued a new report on cybersecurity, which details practices that firms can tailor to their business model as they strengthen their cybersecurity efforts.

The Report on Cybersecurity Practices draws in part from the results of FINRA’s recent targeted examination (“sweep”) of a cross-section of firms. The sweep, conducted in 2014, focused on the types of threats firms face, areas of vulnerabilities in their systems and firms’ approaches to managing these threats.

FINRA also issued a new Investor Alert called Cybersecurity and Your Brokerage Firm, which encourages investors to understand their firm’s cybersecurity policies. FINRA’s new Investor Alert includes a series of questions investors can ask to help them better understand their firm’s cybersecurity activities and policies, as well as practical advice to help investors safeguard their brokerage accounts and personal financial information.

“Broker-dealers face a variety of rapidly evolving cybersecurity threats, which require a well-designed and adaptable cybersecurity program,” said Susan Axelrod, Executive Vice President for Regulatory Operations. “FINRA is keenly focused on cybersecurity, and firms must make responding to these threats a high priority. This report builds on the insights from our recent cybersecurity sweep and highlights a series of principles and effective practices that firms can adapt to their particular circumstances.”

Broker-dealers are increasingly exposed to cybersecurity risks, and breaches at a broker-dealer could entail adverse implications for investors, firms, capital markets and even broader swaths of the financial system.

FINRA’s new report reveals that according to both FINRA’s 2014 sweep and a 2011 survey of firms, broker-dealers identified the top three threats as:

  • hackers penetrating firm systems;
  • insiders compromising firm or client data; and
  • operational risks.

The rankingfirm systems;

  • insiders compromising firm or client data; and
  • operational risks.

The ranking of threats varied by firm and by business model. While online brokerage firms and retail brokerages are more likely to list hackers as their top-priority risk, firms that engage in algorithmic trading were more likely to consider insider risks potentially more damaging. Large investment banks or broker-dealers typically ranked risks from nation states or hacktivist groups more highly than other firms.

Report on Cybersecurity Practices focuses on select cybersecurity topics that, together, serve as a resource for firms developing or advancing their cybersecurity programs, including:

  • cybersecurity governance and risk management;
  • cybersecurity risk assessment;
  • technical controls;
  • incident response planning;
  • vendor management;
  • staff training;
  • cyber intelligence and information sharing; and
  • cyber insurance.

While many of the practices discussed in FINRA’s report are geared to large firms with sophisticated management structures, FINRA believes small firms can benefit from this report as well.

Comments: (0)

Comment on this story (membership required)

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.niceactimize.comvisit www.worldpaymentsreport.comdownload the paper now

Top topics

Most viewed Most shared
Mobile contactless spending accelerating in UKMobile contactless spending accelerating i...
9451 views comments | 23 tweets | 23 linkedin
Norwegian banks and startups form fintech clusterNorwegian banks and startups form fintech...
8028 views comments | 19 tweets | 23 linkedin
RBS to bring Silicon Valley to EdinburghRBS to bring Silicon Valley to Edinburgh
7574 views comments | 10 tweets | 7 linkedin
hands typing furiouslyWhy Is Risk Analytics Important?
7119 views 0 | 2 tweets | 1 linkedin
Barclays pairs banking data with third party apps for SmartBusiness DashboardBarclays pairs banking data with third par...
6717 views comments | 14 tweets | 12 linkedin

Featured job

Competitive
London, UK (or flexible)

Find your next job