Policies and programs
-
Cyber Security intelligence: Imminent: Cybersecurity regulations for US financial services
The U.S. Securities and Exchange Commission’s (SEC) is expected to enact new cybersecurity regulations later this year, but the time is now for alternative investment firms to take proactive action. In this article for Cybersecurity Intelligence, Drawbridge CISO and Managing Director Simon Eyre outlines steps that firms can take today so they won’t be forced to…
-
Finextra: Why underwriters are struggling to price cyber risk insurance policies
Cyber is the most important global business risk for 2023 but underwriters are struggling to price cyber risk policies because they don’t have the tools to accurately determine their clients’ risk posture. In this article for Finextra, Drawbridge Founder and President Jason Elmer highlights why cybersecurity measures are essential and cyber insurance coverage, as an…
-
What can Investment Managers do today to minimize the work required when the SEC Cybersecurity Rule becomes final this year?
While we await the final decision that is due in April 2024, preparation to comply with the new regulation should begin now in order to show a track record of cybersecurity governance and of course to strengthen your defenses against rising cyber threats. Alternative Investment and Wealth Managers that have significant gaps in their cyber…
-
Banking collapse fallout: protect yourself from related cyber risks
Cybercriminals are opportunistic and will capitalize on unpatched systems, current global events or known vulnerabilities. The Silicon Valley Bank and Signature Bank collapses will attract cybercriminals to exploit the situation and take advantage of consumer anxiety and the sense of urgency permeating the markets. Cybercriminals will likely harness social engineering attacks that go beyond everyday…
-
Are your employees ready for the SEC’s pending cybersecurity regulations?
A year after the U.S. Securities and Exchange Commission (SEC) proposed amendments to its cybersecurity regulations, the industry is waiting to see the final rules. Once the rules are put in place, funds of every size will need to comply as regulations will be tightened in areas such as risk assessment, vulnerability management and board oversight.…
-
Podcast: Cybersecurity 5 in 5 February 2023
Cybersecurity 5 in 5 is the official podcast of Drawbridge, a premier provider of cybersecurity software and solutions to the alternative investment industry. The podcast covers the top 5 cyber events and trends that listeners need to know about in just 5 minutes.
-
TabbFORUM: Is your C-suite communication gap attracting cybercriminals?
Internal communications gaps are often the first significant crack in a company’s cybersecurity defenses – and can quickly create vulnerabilities and become a barrier to implementing best practices across the business. In this article for TabbFORUM, Drawbridge President Jason Elmer highlights the critical steps firms must take to enhance communication between CISOs and CEOs, assign…
-
Webinar Recap: SEC and Cybersecurity in 2023 – The Steps Your Firm Must Take Today
In 2022 the SEC made cybersecurity an examination priority and proposed new comprehensive cybersecurity rules for alternative investment advisors and funds. With this increased attention, cybersecurity is no longer only a matter of protecting a firm’s reputation; it’s a critical component of compliance that can significantly impact your business operations. As we await new SEC…
-
What can the ION Markets ransomware attack teach the industry about cyber-threats?
When ION Markets was hit by a ransomware attack last week, it reverberated across the trading landscape and disrupted derivatives trading. Many UK, European and U.S. firms were forced to revert to manual settlement processes. While ION was clear to communicate that the incident was contained, it was just the latest example of cyber criminals…
-
The Value of Ethical Hacking
The words “a hacker has infiltrated our systems” sound like a disastrous scenario for any firm – but what if the hacker were welcome? Invited, even? While many firms have invested in cybersecurity technology and training, the true strength and weaknesses of a company’s defenses will only be revealed when put to the test. Enter…
-
Top Events That Shaped Cybersecurity and Resilience in 2022
There are thousands of breaches and cyber events each year, across geographies and industries – some that garner intense media coverage, and many that fly under the radar. Global regulators are continuing to ramp up the pressure on companies to improve cybersecurity resilience and implement safe data practices. As we enter 2023, it’s important to…
-
Cybersecurity Law Report: Ten cybersecurity resolutions for financial services firms in 2023
Companies in the financial services sector are a natural target for hackers given the value and nature of the data they manage. Faced with this threat, there are a number of steps firms can take to mitigate risk. In this article for Cybersecurity Law Report, Drawbridge President Jason Elmer shares his input on how companies…
