The SEC’s new and proposed rules on cybersecurity and cyber-incident reporting will have a dual impact on private investment advisers and funds.

Last week, Paul Hastings attended the Securities and Exchange Commission (SEC) Speaks 2024 event presented by the Practising Law Institute (PLI) in cooperation with the SEC on April 1 and 2. The SEC Speaks program provides essential updates on current initiatives and priorities at the SEC.

Nearly 40% of compliance professionals across asset management, investment adviser, and private markets firms remain unprepared for the cybersecurity risks posed by AI, reveals the 2024 Cybersecurity Benchmarking Survey.

The Financial Industry Regulatory Authority (FINRA) has fined Osaic Wealth, Inc., formerly known as Royal Alliance Associates, Inc. and Securities America, Inc.

Registered Investment Advisors (RIAs) contended with a 213% frequency increase in total errors and omissions liability claims paid by their insurers in 2023, as they faced a sharp uptick in investor complaints due to 2022’s broad market slump, according to proprietary data from Golsan Scruggs, the corporate insurance brokerage firm serving the financial services industry.

The Securities and Exchange Commission, the Financial Industry Regulatory Authority and other regulators are focusing in 2024 on some new areas — like artificial intelligence — as well as putting increased pressure on advisors and broker-dealers to step up their compliance with others, according to regulatory experts at ACA Group.

Incomplete incident-response plans, insufficient training and a lack of visibility into branch offices’ practices are among the most common cybersecurity-related shortcomings of Financial Industry Regulatory Authority member firms, according to executives at the industry self-regulator.

The investment advisory industry is bracing for a hectic compliance year, as the Securities and Exchange Commission gears up for what looks to be another year of fast-paced rulemaking.

Technology probably the most expensive route, says NCA director

Creating a strong cybersecurity posture needs to be seen as a “three-legged stool” that includes people, process and technology, according to Lisa Plaggemier, the executive director of the National Cybersecurity Alliance (NCA).

Like many other industries, Registered Investment Advisers ("RIAs") have dealt with significant regulatory, technological, and systemic change in recent years. Compared to FINRA-regulated entities, RIAs often face these changes with less frequent or significant touchpoints from their primary regulator, the Securities and Exchange Commission (SEC). The SEC's method of regulating RIAs is typically principle-based rather than prescriptive-based, which the industry generally favors, but this approach certainly has its own pitfalls.