Tag Archives: Cybersecurity


Essential Building Blocks to Hedge Fund Cyber Risk Management

The following article originally appeared in HFMWeek’s Cyber Compliance Focus. It’s not enough to have strong security policies. And it’s not enough to have robust technologies in place to ward off cyber threats. In truth, it’s not even enough to have both of these. An effective cybersecurity program, rather, can only be achieved through a consistent and comprehensive strategy that […]

Showtime’s ‘Billions’ Airs a Lesson in Laptop Security

By: Mary Beth Hamilton, Vice President of Marketing, Eze Castle Integration I just finished Season 1 of Showtime’s ‘Billions’ and can’t resist calling out the horrible IT security on a key character’s laptop. ‘Billions’ centers on a multi-billion dollar CT hedge fund and federal prosecutors looking to take them down for financial crimes. [Spoiler Alert] As season 1 nears an […]

Six Myths about Hedge Fund Cybersecurity

This article was written by Eze Castle Integration. The cybersecurity threat landscape constantly evolves, leaving behind significant operational and reputational harm for financial services firms. Increasing frequency of cyber-attacks has forced cybersecurity into the limelight via news making headlines, enough to fill any business with trepidation. We hear and see a lot of information floating around – some of which, […]

Five Ways to Impress Hedge Fund Investors at Your Next Due Diligence Meeting

Operational due diligence meetings have become impactful moments for hedge funds to impress both current and potential investors. Firms have the ability to answer questions, alleviate fears and market themselves in a one-on-one setting that affords more opportunity than a completed due diligence questionnaire and an up-to-date performance sheet. But how can today’s hedge funds truly set themselves apart and […]

Cybersecurity Dos and Don’ts Your Employees Must Follow

October is cybersecurity awareness month so it is important to ensure that your firm and employees are prepared by using best practices, and security policies and procedures. Risk mitigation is needed to protect both the firm and its employees from savvy hackers and cyber attacks. Data breaches continue to wreak havoc on businesses, and the cost is continuously rising. According to the Ponemon Institute, […]

How to Create A Cyber Security Culture + Employee Security Awareness

Did you hear the story of the Central Bank of Bangladesh that lost $100 million to hackers? It happened in February 2016 and goes like this. The bank believes Chinese hackers executed a hack that allowed $100 million to be taken from the bank’s foreign exchange account at the Federal Reserve Bank of New York. This is just the latest […]

SEC Charges IA with Cybersecurity Failures

September 23, 2015 Dear Friends, The SEC announced that an investment adviser agreed to settle charges that it failed to establish required cybersecurity policies and procedures, to ensure the security and confidentiality of personally identifiable information (PII). The firm stored PII of approximately 100,000 individuals on a third party hosted web server, which was hacked in 2013. Following the attack, […]

SEC Announces 2nd Round of Cybersecurity Exams

September 16, 2015 Dear Friends, The SEC announced it will conduct a second round of cybersecurity examinations and released a sample list of information that the Office of Compliance Inspections and Examinations may review in the context of conducting examinations. Governance and Risk Assessment: Examiners may assess whether registrants have cybersecurity governance and risk assessment processes in the areas outlined […]

NFA Issues Cybersecurity Guidance

Dear Friends, The NFA issued an interpretive notice, subject to CFTC approval, outlining general requirements relating to members’ information systems security practices (“ISSP”). The NFA’s notice provides guidance regarding ISSPs that each member should develop and customize, including the following: Written Policies and Procedures Security and Risk Analysis Development of Protective Measures Against Threats and Vulnerabilities Response and Recovery Employee Training […]

SEC Releases Cybersecurity Guidance

Dear Friends, The SEC released cybersecurity guidance, specific to registered investment advisers and registered investment companies. As summarized below, the SEC suggests advisers and funds:  Periodically assess the nature of data collected; internal and external threats; existing security controls; the impact of a breach, and the effectiveness of the governance structure for the management of cybersecurity risk. Develop a strategy to […]