On April 13, 2020, the New York Department of Financial Services (NYDFS) issued new guidance to all New York State Regulated Entities to highlight “a significant increase in cybercrime” related to the COVID-19 epidemic....more
As COVID-19 has prompted a massive shift by organizations to the implementation and use of remote working solutions for their employees, there has been an unfortunate, but not surprising, corresponding rise in malicious...more
As the COVID-19 pandemic continues to demand the attention of corporate leaders and the public at large, businesses have likely had little time to get up to speed on New York’s new data breach notification law, the Stop Hacks...more
The spread of COVID-19 has prompted an enormous shift by organizations to the use and implementation of remote working solutions for a wide range and number of employees. Unfortunately – but perhaps not surprisingly – this...more
The SEC, through its Office of Compliance Inspections and Examinations (“OCIE”), recently issued its most detailed cyber guidance to date. OCIE had previously issued several cybersecurity risk alerts over the past few years....more
2/13/2020
/ Corporate Issuers ,
Cybersecurity ,
Data Management ,
Incident Response Plans ,
Internal Controls ,
Investment Adviser ,
New Guidance ,
OCIE ,
Risk Alert ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Security and Privacy Controls ,
Third-Party Service Provider
On December 13, 2019, the U.S. Department of Justice’s National Security Division (NSD) issued important new policy guidance regarding voluntary disclosures of export control and sanctions laws violations. Among other things,...more
12/16/2019
/ Cooperation ,
Corporate Counsel ,
Department of Justice (DOJ) ,
Economic Sanctions ,
Export Administration Regulations (EAR) ,
Export Controls ,
Exports ,
Government Investigations ,
Internal Investigations ,
International Emergency Economic Powers Act (IEEPA) ,
ITAR ,
National Security ,
New Guidance ,
Office of Foreign Assets Control (OFAC) ,
Voluntary Disclosure
On July 16, 2019, the U.S. Treasury Department’s Financial Crimes Enforcement Network (“FinCEN”) issued an “Updated Advisory on Email Compromise Fraud Schemes Targeting Vulnerable Business Processes” (the “Advisory”). The...more
On May 23, 2019, the United States Securities and Exchange Commission (“SEC”)’s Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert entitled “Safeguarding Customer Records and Information in Network...more
5/29/2019
/ Broker-Dealer ,
Cloud Storage ,
Customer Information ,
Cyber Threats ,
Cybersecurity ,
Data Protection ,
Data Security ,
Data Storage Providers ,
Identity Theft ,
Identity Theft Red Flags Rule ,
Investment Adviser ,
OCIE ,
Policies and Procedures ,
Popular ,
Regulation S-ID ,
Regulation S-P ,
Regulatory Requirements ,
Risk Alert ,
Safeguards Rule ,
Securities and Exchange Commission (SEC) ,
Third-Party Service Provider ,
Vendors