top of page
  • Writer's pictureDeborah

Published on February 9 by the Securities and Exchange Commission (SEC) the Proposed rule will require registered investment companies and funds as well as registered investment advisers to implement written policies and procedures to address their cybersecurity risks.

The policies and procedures should covers areas such as:

  • User security and access to prevent unauthorised access to information and systems

  • Information protection to prevent unauthorised access and use through periodic assessment

  • Threat and vulnerability management to detect, mitigate, and remediate cybersecurity threats and vulnerabilities with respect to adviser or fund information and systems.

  • Cybersecurity incident response and recovery to detect, respond to, and recover from a cybersecurity incident

The Proposed rule also includes amendments to the requirements relating to recordkeeping, the reporting of incidents to the SEC as well as to the disclosure of cybersecurity risks and incidents to clients and investors.

Recent Posts

See All

The Secured Overnight Financing Rate (SOFR) is a broad measure of the cost of borrowing cash overnight collateralized by Treasury securities. SOFR is the overnight interest rate for US dollar-denomina

13/06/2023 - Canadian Securities Administrators (CSA) SEDAR+ go-live date. All issuer filings, cease trade orders and disciplined list entries will be filed in SEDAR+ 16/06/2023 - OSFI consultation pe

On May 11, the Bank for International Settlements (BIS) published a Handbook on how central bank digital currencies (CBDCs) could work for offline payments, defined as a “transfer of value between dev

bottom of page