19 October 2017
Register now

Finra issues report on cybersecurity practices

04 February 2015  |  2292 views  |  0 Source: The Financial Industry Regulatory Authority (FINRA)

The Financial Industry Regulatory Authority (FINRA) issued a new report on cybersecurity, which details practices that firms can tailor to their business model as they strengthen their cybersecurity efforts.

The Report on Cybersecurity Practices draws in part from the results of FINRA’s recent targeted examination (“sweep”) of a cross-section of firms. The sweep, conducted in 2014, focused on the types of threats firms face, areas of vulnerabilities in their systems and firms’ approaches to managing these threats.

FINRA also issued a new Investor Alert called Cybersecurity and Your Brokerage Firm, which encourages investors to understand their firm’s cybersecurity policies. FINRA’s new Investor Alert includes a series of questions investors can ask to help them better understand their firm’s cybersecurity activities and policies, as well as practical advice to help investors safeguard their brokerage accounts and personal financial information.

“Broker-dealers face a variety of rapidly evolving cybersecurity threats, which require a well-designed and adaptable cybersecurity program,” said Susan Axelrod, Executive Vice President for Regulatory Operations. “FINRA is keenly focused on cybersecurity, and firms must make responding to these threats a high priority. This report builds on the insights from our recent cybersecurity sweep and highlights a series of principles and effective practices that firms can adapt to their particular circumstances.”

Broker-dealers are increasingly exposed to cybersecurity risks, and breaches at a broker-dealer could entail adverse implications for investors, firms, capital markets and even broader swaths of the financial system.

FINRA’s new report reveals that according to both FINRA’s 2014 sweep and a 2011 survey of firms, broker-dealers identified the top three threats as:

  • hackers penetrating firm systems;
  • insiders compromising firm or client data; and
  • operational risks.

The rankingfirm systems;

  • insiders compromising firm or client data; and
  • operational risks.

The ranking of threats varied by firm and by business model. While online brokerage firms and retail brokerages are more likely to list hackers as their top-priority risk, firms that engage in algorithmic trading were more likely to consider insider risks potentially more damaging. Large investment banks or broker-dealers typically ranked risks from nation states or hacktivist groups more highly than other firms.

Report on Cybersecurity Practices focuses on select cybersecurity topics that, together, serve as a resource for firms developing or advancing their cybersecurity programs, including:

  • cybersecurity governance and risk management;
  • cybersecurity risk assessment;
  • technical controls;
  • incident response planning;
  • vendor management;
  • staff training;
  • cyber intelligence and information sharing; and
  • cyber insurance.

While many of the practices discussed in FINRA’s report are geared to large firms with sophisticated management structures, FINRA believes small firms can benefit from this report as well.

Comments: (0)

Comment on this story (membership required)

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.fivedegrees.nlvisit www.niceactimize.com

Top topics

Most viewed Most shared
Ripple looks to drive bank adoption with $300m XRP rebate programmeRipple looks to drive bank adoption with $...
15784 views comments | 12 tweets | 4 linkedin
Swift positive on blockchain, but big challenges remainSwift positive on blockchain, but big chal...
8944 views comments | 16 tweets | 22 linkedin
satelliteGates Foundation backs Ripple collaboratio...
8031 views comments | 13 tweets | 10 linkedin
IBM uses blockchain to improve cross-border payments processingIBM uses blockchain to improve cross-borde...
7135 views comments | 9 tweets | 17 linkedin
Santander InnoVentures leads $6m funding round for Mexico's ePesosSantander InnoVentures leads $6m funding r...
6279 views comments | 6 tweets | 3 linkedin

Featured job

Find your next job