Tag: cybersecurity

Cover Story

A Shift in the Tech Landscape

The pandemic forces advisers to rethink their business models and integrate technology.

Compliance November 5th, 2021

Provider Reviews, Contracts Emphasized in DOL Cybersecurity Guidance

Retirement plan fiduciaries often rely on their service providers to create the electronic systems used to maintain participant data and conduct electronic transactions involving plan assets—so the Department of Labor is paying special attention to these relationships.

Practice Management October 27th, 2021

Strong Cybersecurity Policies Must Be a Firm Priority

From reputational damage to the downstream effect of more expensive fiduciary liability insurance, advisory firms have a lot to lose from lax cybersecurity practices.

Compliance News

Legislative and Judicial Actions

The SEC returns to cybersecurity enforcement pledge; Form 5500 revisions; revenue-sharing disclosure failures result in SEC action; and more.

ERISA vista

Cybersecurity Considerations

How to select and monitor recordkeepers.

Cover Story

Masterminds of the Plan

How advisers can use RFIs to ensure they match clients with the best providers.

September 10th, 2021

SEC Sanctions Offer New Cybersecurity Guideposts

One former SEC enforcement leader says actions against several advisory firms that allegedly had cybersecurity failures make a clear case for the use of multifactor authentication—but that’s just the beginning of cybersecurity.

Compliance August 31st, 2021

SEC Makes Good on Cybersecurity Enforcement Pledge

Earlier this year, the agency published a list of 2021 examination priorities that prominently featured issues pertaining to cybersecurity, and now it has sanctioned eight firms for related cybersecurity failures.

Compliance Consult

Cybersecurity and ERISA

DOL guidance should prompt clients to ask for help with compliance.

Products August 17th, 2021

Colonial Surety Launches Fiduciary, Cyber Liability Protection Package

The protection provides coverage for the costs of legal services, computer forensic services, public relations and crisis management expenses, and more.

Products July 21st, 2021

Spark Institute Issues Recommendations for Cybersecurity

The standards it’s developing provide ‘more explicit guidance’ to decrease cyber fraud.

Compliance News

Legislative and Judicial Actions

States updating annuity standards; Senate confirms a Labor secretary; GAO presses the DOL to clarify cybersecurity guidance; and more.

Compliance April 14th, 2021

DOL Issues Cybersecurity Guidance

The guidance, which is the first of its kind, includes best practices and tips for protecting retirement benefits.

Compliance March 16th, 2021

GAO Turns to DOL for Additional Cybersecurity Guidance

The Government Accountability Office calls for more guidance on cybersecurity matters and lists recommendations for the DOL to implement.

Compliance News

Legislative and Judicial Actions

SEC approves shareholder proposal, fiduciaries of Mutual of Omaha plan settle, and more.

Compliance September 17th, 2020

SEC Risk Alert Identifies ‘Credential Stuffing’ Hacking Technique

‘Credential stuffing’ is a method of cyberattack to client accounts that uses compromised client login credentials, resulting in the possible loss of customer assets and unauthorized disclosure of sensitive personal information.

Compliance August 5th, 2020

Cyberattacks More Prevalent Among Smaller Businesses

The unexpected economic downturn caused by COVID-19, along with the rapid shift to remote work, made those businesses with few resources even more vulnerable.

Client Service

The Alternative Workplace

Best practices when you need to e-advise.

February 20th, 2020

Cybersecurity Strategies for the Adviser Industry

Effective cybersecurity strategies start with the right tone at the top, with senior leaders who are committed to improving their organization’s digital posture.

Compliance November 27th, 2019

What Advisers Should Know About GDPR

While the GDPR does not directly address U.S. benefit plans, it should be of particular interest to defined contribution plan sponsors and their service providers because they hold personal information for each plan participant.