Advisor Armor 4th Quarter Training

Q4 2018 Training kicks off Monday the 15th and runs for 60 days with reminders every 10 days. This session includes videos and interactive questions along with a quiz. The subject is mobile security.

As usual the invitations will come directly to learners in this format:

Invitations to training will always take the format below:


Note: This email is authentic and part of Advisor Armor's ongoing data security training.  Please do not disregard.

It’s time to start your interactive Security Awareness Training from Advisor Armor!

To begin your training, follow this link:

Note that NO username and password are required. The course you are taking is called “AA Q3 2018 Data Security Awareness Training” and includes 3 interactive training modules.

You have 41 days to complete your training and you will be reminded to complete it every few days. For the best possible experience, you should plan on taking your training at a computer with audio, but closed captions are also provided if audio is not an option.

Thank you!

Some additional reminders.

  • Reports are available should you want them emailed each week. Please send us a note to Results will also be published inside the account dashboard at the end of each quarter.

  • You can manage your Learner Roster inside your dashboard under Training.

  • Email Enticements are randomized and can also be reported weekly.

  • Our weekly news and tips is sent only to the account administrators but you are free to share as you so choose.

Thank you.

Weekly Security Tip

This week's topic: Malvertising

We may think of ourselves as experts when it comes to spotting a fake website or phishing email, but new tricks are being used to sneak viruses into ads even on trusted websites.

In this week’s security tip video, learn more about how malvertising works and how you can protect your systems.

Watch this week's Security Tip by

Advisor Armor

or paste this URL into your browser – Training Video

Quick Tips

  • Make sure your web browsers and plugins are up to date.

  • Set your web browsers to flag malicious content.

Update on Overview of Coverage including the new $25,000 reimbursement guarantee for fines and pend


Advisor Armor delivers comprehensive interpretation, guidance, and the tools and processes to meet and exceed federal and state cyber security requirements.  All processes are accessed through a proprietary online dashboard.


Risk Assessments

Annual Risk Assessments to identify risks and vulnerabilities as well as profile operating processes for deficiencies. 


Security Awareness Education and Training

Advisor Armor uses interactive computer-based training modules that allow people to learn and then practice the latest cyber security threats and defenses in hands-on simulations.  We develop the modules specifically to address current issues for financial professionals and their firms.  Sessions are provided quarterly with automated delivery, access, reminders and reporting.

Additional flash member news includes weekly security tips, monthly newsletters, and member security alerts.


Policies and Procedure Development, Maintenance and Testing

Advisor Armor establishes and maintains customized policies and procedures reflecting the operational handling of critical data and information.  These documents are consistent with NIST standards and update in accordance with those changes and the compliance calendar.  Testing on comprehension and device behavior is included to evidence practical application.


Email Enticement Phishing Testing

Advisor Armor incorporates recognition and awareness training on phishing and other email enticements.  This training is then tested randomly using fictitious efforts to elicit improper user behavior.  Fully evidencing and reporting is included.


Infrastructure Testing and Diagnostics

Advisor Armor coverage includes annual Penetration Testing, Vulnerability Scanning and device Endpoint Audits.  These diagnostics produce the evidence needed for actionable security improvements and  proof of the successful implementation of policies and procedures


Customized Dashboard Experience

Advisor Armor provides an online dashboard to evidence and maintain compliance and improve operating security.  Unlimited support is available by phone, email or chat bot.


Incident Response Management

Advisor Armor coverage includes the identification and actions needed in the event of a security incident.  Response plans are developed and included within Policies and Procedures.  Advisor Armor leads the response and recovery efforts that may include containment, investigation, determination, notifications and many other potentially related actions.  Records are also stored inside the client dashboard.


Regulatory Examination Review

Advisor Armor conducts annual cyber security examination audits to ensure the proper elements are updated and available on demand.


Compliance Certification and Assurance

Advisor Armor provides cyber security certification that is designed to audit and endorse the functional comprehensive plan, the application of such, and management support and endorsement.  Attestation efforts are included.


$25,000 Exam Guarantee

Upon certification Advisor Armor coverage includes up to $25,000 in reimbursement for fines and penalties associated with state or federal examinations.  Terms and conditions apply.


Cyber Liability Insurance

Advisor Armor coverage includes the assessment and potential provision of practical cyber insurance requirements.  Contact us to discuss.

New NASAA president Michael Pieciak puts cybersecurity at top of agenda

It's often the smallest investment advisory firms that are the most vulnerable to online threats, and that's why it's natural for rule-making to start at the state level, according to a top state regulator.

The North American Securities Administrators Association last week released for public comment a proposed cybersecurity rule. It would require advisers to adopt policies and procedures to safeguard information physically and online and to inform clients about their privacy policies annually.

The potential model rule is a top priority of new NASAA president Michael Pieciak. The Vermont commissioner of financial regulation was inaugurated for a one-year term on Sept. 25 at the organization's annual conference in Anchorage, Alaska.

State regulators are responsible for overseeing approximately 18,000 investment advisers with less than $100 million in assets under management. Many of them are one- and two-person operations, which can be juicy targets for online predators. But they also lack the cyber defense resources of major financial firms, Mr. Pieciak said.

"I'd like to see a model rule in place that does a good job of right-sizing the need to secure firms' important data," he said. "I don't see this as an issue where it's regulators versus industry. I see it as an issue where it's regulators and industry versus the cybercriminal."

The comment period lasts until Nov. 26. After digesting the feedback, NASAA could propose a model cyber rule for state legislatures to consider. There are cyber regulations in New York, but a model rule could expand the number of states with cyber oversight.

If NASAA proceeds, it could launch a cyber rule before the Securities and Exchange Commission and the Financial Regulatory Authority do. The SEC and Finra examine for cyber deficiencies.

"Maybe it makes sense that we're first," Mr. Pieciak said. Small advisers regulated by states "are some of the most vulnerable shops. The SEC and Finra have a different contingency they're trying to protect."

NASAA will host a cybersecurity roundtable in Washington on Oct. 15.

First millennial to lead NASAA

Mr. Pieciak, 35, is the first millennial president of NASAA, giving him a perspective that will influence both his leadership style and his regulatory agenda.

He said that his generation is often mislabeled. He has found his cohorts to be independent, detail-oriented and collaborative. That last trait will be helpful as the head of NASAA, a group in which the president is just "first among equals."

"That collaborative decision-making style is something I think is a hallmark of the millennial generation and something I hope to bring to this position," Mr. Pieciak said.

Millennial investors also pose a regulatory challenge given that they are often saddled with big student loans, put off buying homes and saving for retirement, and are attracted to online investments that may pose threats, such as cryptocurrencies.

"We see a lack of financial literacy and basic financial skills among the younger generation, particularly when it comes to thinking about some of the big life decisions like buying a home, which is usually someone's most important asset," Mr. Pieciak said. "We're going to have a specific millennial focus on our investor education and outreach initiative to educate and also protect millennial investors."

Other items on Mr. Pieciak's agenda include working on programs related to financial technology and cryptocurrency, leading a NASAA strategic planning process and fighting to preserve state regulatory authority.

Monthly Newsletter

This month's topic:  Identification & Authentication

The concept of a using a strong password has long been a critical step throughout our daily lives. However, as technology has continuously changed, passwords and the authentication process have struggled to keep up.

In this month’s Security Newsletter, learn more about the importance of passwords and some new tips on creating a stronger password.

Read this month's Security Newsletter by

Advisor Armor

or paste this URL into your browser –

Quick Tips

  • New guidelines suggest a passphrase is more secure than a complex password.

  • Screen your passwords against a list of commonly used or compromised passwords to make them harder to crack.

Weekly Security Tip

This week's topic: What is a Computer Virus?

You may be familiar with what a computer virus is or what it can be, but there are many more frightening facts about viruses that you may not know.

In this week’s security tip, learn more about computer viruses and how you can protect your systems.

Watch this week's Security Tip by

Advisor Armor

Quick Tips

  • Exercise caution surfing the web or downloading files.

  • Ensure that your systems and programs are updated with the latest security patches.

You are receiving these weekly security tips and newsletters as part of your organization's efforts to create a security-minded workforce. These emails are sent on behalf of Advisor Armor and are intended for all staff to watch, read and engage with to protect sensitive information.

Weekly Security Tip

This week's topic: Cyber Phishing Scams

You have undoubtedly received a phishing scam to your inbox, or know someone who has mistakenly taken the bait to one. Phishing scams are becoming increasingly common and are often difficult to spot.

In this week’s security tip video, learn the tricks of the trade so you can successfully spot a phishing scam.

Watch this week's Security Tip by

Advisor Armor

Training Video

Quick Tips

  • Look for messages with threatening language or ones that requires immediate action to be taken

  • Generic greetings such as "Cardholder" or "Dear Customer" can be a red flag for a phishing scam

Weekly Security Tip

This week's topic: Advanced Fee Loan Scams

When money is tight, many of us may look to a loan to cover some of our important expenses. Unfortunately, scammers are using their tricks to prey on applicants with phony promises they have no intention of fulfilling.

In this week's security tip video, learn more about these scams and how you can prevent this from happening to you or a loved one.

Watch this week's Security Tip by

Advisor Armor

Training Video

Quick Tips

  • Real lenders can never guarantee your loan in advance.

  • Any up-front fees you are requested to pay before receiving your loan is your cue to walk away.

You are receiving these weekly security tips and newsletters as part of your organization's efforts to create a security-minded workforce. These emails are sent on behalf of Advisor Armor and are intended for all staff to watch, read and engage with to protect sensitive information.

Monthly Newsletter

This month's topic:  The Human Side of Security

Our cybersecurity efforts cannot solely rely on technology to keep us safe. The human side of security is perhaps a more important concept in keeping our information safe. In this month's Security Newsletter, learn how we as individuals play a role in security.

Read this month's Security Newsletter by Advisor Armor

or paste this URL into your browser –

Quick Tips

  • Beware of social engineers and don't assume someone is who they claim to be.
  • Follow a clean desk policy by locking your workstation when you get up and by putting away important documents.