Peter Altman

Peter Altman

Akin Gump Strauss Hauer & Feld LLP

Contact

Readers' Choice Awards

Securities
View Bio
RSS

Latest Posts › Cybersecurity

Share:

Cybersecurity After SolarWinds: Practical Guidance for CISOs Under the New Rules

Judge Engelmayer’s 107-page dismissal of most of the U.S. Securities and Exchange Commission (SEC)’s claims against SolarWinds provides valuable guidance, and some comfort, for public companies and Chief Information Security...more

8/19/2024  /  Chief Information Security Officer (CISO) , Corporate Counsel , Cyber Attacks , Cybersecurity , Disclosure Requirements , Fraud , Internal Controls , Misrepresentation , Negligence , Ransomware , Scienter , Securities and Exchange Commission (SEC) , Securities Exchange Act , SolarWinds

SEC Turning Up the Heat: SolarWinds and Its CISO Charged with Fraud Regarding Cyber-related Disclosures

Key Takeaways - With the SolarWinds enforcement action, the SEC continues to ratchet up its enforcement against companies that fail to properly disclose their cybersecurity incidents and risks. By naming the SolarWinds CISO...more

11/22/2023  /  Chief Information Security Officer (CISO) , Cyber Attacks , Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Enforcement Actions , Fraud , Incident Response Plans , Popular , Risk Assessment , Securities and Exchange Commission (SEC) , SolarWinds

SEC Releases Risk Alert on EXAMS Process

Investment Advisers: Assessing Risks, Scoping Examinations, and Requesting Documents* I. Introduction - The SEC-registered investment adviser (“adviser”) population is large and diverse, ranging from global asset managers...more

9/12/2023  /  Audits , Brokerage Accounts , Business Operations , Compliance , Cybersecurity , Disclosure Requirements , Ethics , Financial Records , Insider Trading , Internal Controls , Investment Adviser , Marketing , Policies and Procedures , Risk Alert , Risk Management , Securities , Securities and Exchange Commission (SEC) , Trading Platforms , Valuation

The SEC’s 2023 Exam Priorities in Context: Private Fund Arrangements

On Tuesday, February 7, the Division of Examinations of the U.S. Securities and Exchange Commission released its 2023 Examination Priorities. Private fund sponsors and managers should pay attention to the Priorities for two...more

2/16/2023  /  Broker-Dealer , Cryptocurrency , Cybersecurity , Environmental Social & Governance (ESG) , Investment Adviser , Private Funds , SEC Examination Priorities , Securities and Exchange Commission (SEC)

Disclosing Cyber Incidents and Risks: SEC Proposes Rules to Enhance and Standardize Cyber Disclosures and Incident Reporting by...

Key Points - Proposed amendments bolster cyber disclosure and incident reporting requirements to better inform investors about a company’s risk management, strategy and governance relative to cyber issues. Under the...more

3/14/2022  /  Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Form 8-K , Publicly-Traded Companies , Regulation S-K , Securities and Exchange Commission (SEC)

SEC Proposes Rules to Enhance and Standardize Cyber Disclosures and Incident Reporting by Public Companies

Key Points - Proposed amendments bolster cyber disclosure and incident reporting requirements to better inform investors about a company’s risk management, strategy and governance relative to cyber issues. ...more

3/11/2022  /  Corporate Governance , Cybersecurity , Disclosure Requirements , Form 8-K , Publicly-Traded Companies , Regulation S-K , Securities and Exchange Commission (SEC) , XBRL Filing Requirements

Regulatory Investigations and Enforcement Trends in 2022

The New Year Brings a New Enforcement Focus on Emerging Technology - In 2021, newly confirmed members of the Biden administration set the stage for increased enforcement activity, surging resources to investigations and...more

3/2/2022  /  Biden Administration , CFTC , Corporate Governance , Cryptocurrency , Cybersecurity , Department of Justice (DOJ) , Enforcement Actions , Popular , Securities and Exchange Commission (SEC)

SEC Chair Gensler Warns of a New Era of Cyber-Securities Laws

Gary Gensler, Chair of the U.S. Securities and Exchange Commission (SEC), signaled a new era of cybersecurity law (and accompanying enforcement) in his keynote address “Cybersecurity and Securities Laws” on January 24, 2022,...more

2/1/2022  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Data Security , Personally Identifiable Information , Regulation SCI , Securities and Exchange Commission (SEC)

Twin DOJ Initiatives Tackle Cybersecurity Fraud and Cryptocurrency Enforcement

Key Points - On October 6, 2021, the DOJ announced two new initiatives: the Civil Cyber-Fraud Initiative and the National Cryptocurrency Enforcement Team. The Civil Cyber-Fraud Initiative will fight rising cyber threats...more

10/13/2021  /  Cryptocurrency , Cyber Incident Reporting , Cybersecurity , Cybersecurity Maturity Model Certification (CMMC) , Department of Defense (DOD) , Department of Justice (DOJ) , DFARS , False Claims Act (FCA) , Federal Acquisition Regulations (FAR) , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , NDAA , Popular , Supply Chain

SEC Cyber Enforcement Actions – Lessons for Private Fund Managers

On August 30, 2021, the Securities and Exchange Commission announced three enforcement actions against registered investment advisers for alleged cybersecurity failures involving cloud-based email systems. All three actions...more

9/9/2021  /  Cybersecurity , Data Privacy , Data Security , Enforcement Actions , Fund Managers , Personally Identifiable Information , Policies and Procedures , Registered Investment Advisors , Regulation S-P , Securities and Exchange Commission (SEC)

SEC Risk Alert Highlights on COVID-19-Related Compliance Risks and Considerations for Investment Advisers and Broker-Dealers

- The OCIE of the SEC highlights that responses to COVID-19 present important regulatory and compliance issues for SEC registrants, including “heightened risks of misconduct” tied to recent market volatility. - The Risk...more

8/21/2020  /  Asset Management , Broker-Dealer , Business Continuity Plans , Business Operations , Compliance , Conflicts of Interest , Coronavirus/COVID-19 , Cybersecurity , Data Protection , Fees , Financial Transactions , Investment Adviser , Investment Fraud , Investment Management , Investors , OCIE , Personally Identifiable Information , Policies and Procedures , Popular , Remote Working , Risk Alert , Securities and Exchange Commission (SEC) , Supervision

SEC’s Examination Function Warns Its Registrants of Risks Associated with Dangerous Malware

- In the age of broad corporate teleworking brought on by COVID-19, OCIE of the SEC has observed during recent examinations that investment advisers, broker-dealers and investment companies are subject to an increased threat...more

7/16/2020  /  Broker-Dealer , Cyber Attacks , Cybersecurity , Data Breach , Financial Services Industry , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Incident Response Plans , Investment Management , Malware , OCIE , Popular , Ransomware , Risk Alert , Securities and Exchange Commission (SEC)

Government Enforcers Focused on Coronavirus-related Actions

- Market participants should review and assess their compliance procedures to prevent and detect insider trading risks associated with COVID-19. - Companies should increase their vigilance regarding cybersecurity threats...more

4/1/2020  /  CFTC , Coronavirus/COVID-19 , Cybersecurity , Department of Justice (DOJ) , Enforcement Actions , Financial Crimes , Insider Trading , Investors , Phishing Scams , Pump and Dump , Securities and Exchange Commission (SEC) , Securities Fraud , U.S. Treasury , Wire Fraud

SEC OCIE Issues Guidance on Advisors’ and Broker-Dealers’ Cloud-Based and Other Network Storage of Customer Data

• On May 23, 2019, the Securities and Exchange Commission’s (SEC) Office of Compliance Inspections and Examinations (OCIE) issued a Risk Alert describing its observations in past examinations of weaknesses and best practices...more

5/29/2019  /  Broker-Dealer , Cloud Storage , Customer Information , Cyber Threats , Cybersecurity , Data Protection , Data Security , Data Storage Providers , Identity Theft , Identity Theft Red Flags Rule , Investment Adviser , OCIE , Policies and Procedures , Regulation S-ID , Regulation S-P , Regulatory Requirements , Risk Alert , Safeguards Rule , Securities and Exchange Commission (SEC) , Third-Party Service Provider , Vendors

SEC Warns Registered Firms about Client Privacy and Data Security

• The SEC released a Risk Alert summarizing key areas in which it continues to see compliance deficiencies related to Regulation S-P, the primary SEC rule regarding privacy notices and safeguard policies of investment...more

4/29/2019  /  Broker-Dealer , Customer Information , Cybersecurity , Data Breach , Data Privacy , Data Security , Employee Training , Incident Response Plans , Investment Adviser , Notice Requirements , OCIE , Opt-Outs , Personally Identifiable Information , Policies and Procedures , Popular , Privacy Policy , Regulation S-P , Risk Alert , Safeguards Rule , Securities and Exchange Commission (SEC) , Vendors

SEC OCIE Issues Guidance on Advisers’ Recordkeeping Requirements for Electronic Messaging Following its Sweep Examination

• On December 14, the SEC’s OCIE issued a Risk Alert summarizing the findings of its limited-scope examination initiative relating to electronic messaging. • Noting a “pervasive use” of electronic messaging by adviser...more

12/18/2018  /  Best Practices , Books & Records , Bring Your Own Device (BYOD) , Cybersecurity , Electronic Communications , Email Policies , Employee Training , Investment Adviser , Investment Advisers Act of 1940 , New Guidance , OCIE , Policies and Procedures , Recordkeeping Requirements , Risk Alert , Risk Mitigation , Securities and Exchange Commission (SEC) , Text Messages

SEC Warns Companies of Potential Internal Accounting Control Violations with Business Email Compromise

• The SEC issued guidance in the form of a rare “21(a) report” this week after investigating a series of email frauds impacting 9 unnamed companies. • These email-based frauds, referred to as “CEO scams” or “vendor scams,”...more

10/19/2018  /  Accounting Controls , Business E-Mail Compromise (BEC) , CEOs , Corporate Finance , Cyber Crimes , Cybersecurity , Data Breach , Email , Enforcement Actions , Internal Controls , New Guidance , Policies and Procedures , Popular , Publicly-Traded Companies , Scams , Securities and Exchange Commission (SEC) , Securities Exchange Act , Spoofing , Wire Fraud

Big Data and the Risks of Insider Trading

In the perennial quest for alpha, investment managers have turned increasingly to big and alternative data for market insights. The most prominent consumers of this data on Wall Street are managers of ‘‘quant’’ funds, which...more

3/20/2018  /  Algorithms , Asset Management , Best Practices , Big Data , Breach of Duty , Cybersecurity , Hedge Funds , Insider Trading , Investment Management , Material Nonpublic Information , Popular , Professional Liability , Risk Mitigation , Scienter , Tippees , Tippers , Vendors
18 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide