Lessons From SEC’s First Cybersecurity Enforcement Action
This week, the SEC fined investment advisory firm R.T. Jones Capital Equities Management for failing to establish required cyber-security policies and procedures, which later led to a breach that compromised the personal data of roughly 100,000 customers. It is the first enforcement action the SEC has brought against a regulated ...
Related articles
-
Article
Frustrating Risk With the Right Internal Control Framework
Image: As cyber-security and IT controls rise up the priority list in corporate audits, a new wrinkle is emerging: numerous frameworks (COSO, NIST, CoBIT) used by numerous parties, all trying to build effective control systems. That could lead to painful detours in mapping controls, if compliance executives don’t plan carefully. ...
-
News BriefJudge reinstates fired CPSC commissioners in latest battle over government cuts
In May, three commissioners for the Consumer Product Safety Commission were abruptly fired by President Donald Trump and sued for their jobs shortly after. A federal judge has ruled that the commissioners should be reinstated, although it’s unclear whether that ruling may itself be reversed.
-
PremiumUK’s Failure to Prevent Fraud law may expose firms to unlimited fines and prosecution, says Moody’s compliance risk expert
Fraud now accounts for around 40% of all crime in the U.K., posing a major problem for banks and consumers. Ted Datta, head of industry practice for financial crime compliance at Moody’s, warns that the risk is growing fast.