FINRA found that a large number of member firms had shortcomings. These included: insufficient vendor controls, access management, change management supervision, system testing and data loss prevention. In some cases this caused violations of FINRA and SEC rules. Firms are advised to evaluate their supervisory controls for the vendor relationship lifecycle to ensure compliance with SEC requirements to protect the security and confidentiality of customer information.
Related Posts
NHS Cyber Attack Highlights Third-Party Risk
A recent cyber attack targeting a blood test provider contracted by the NHS has resulted in the theft…
New York Introduces Stricter Social Media Privacy Laws for Children
New York has enacted stringent legislation aimed at enhancing social media privacy protections for children. The new law…
Surge in Data Subject Requests (DSRs)
A recent report reveals a significant increase in Data Subject Requests (DSRs), highlighting the growing demand for individuals…