mNo edit summary Tag: sourceedit |
(Adding categories) Tag: categoryselect |
||
| (6 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
== Citation == |
== Citation == |
||
| − | [[FINRA]], '''Report on Cybersecurity Practices''' (Feb. 2015) ([https://www.finra.org/sites/default/files/p602363%20Report%20on%20Cybersecurity%20Practices_0.pdf full-text]). |
+ | [[Financial Industry Regulatory Authority]] ([[FINRA]]), '''Report on Cybersecurity Practices''' (Feb. 2015) ([https://www.finra.org/sites/default/files/p602363%20Report%20on%20Cybersecurity%20Practices_0.pdf full-text]). |
== Overview == |
== Overview == |
||
| Line 7: | Line 7: | ||
Like many organizations in the [[financial service]]s and other [[sector]]s, broker-dealers (firms) are the target of [[cyberattack]]s. The frequency and sophistication of these [[attack]]s is increasing and individual broker-dealers, and the industry as a whole, must make responding to these [[threat]]s a high priority. |
Like many organizations in the [[financial service]]s and other [[sector]]s, broker-dealers (firms) are the target of [[cyberattack]]s. The frequency and sophistication of these [[attack]]s is increasing and individual broker-dealers, and the industry as a whole, must make responding to these [[threat]]s a high priority. |
||
| − | This report is intended to assist firms in that effort. Based on [[FINRA]] |
+ | This report is intended to assist firms in that effort. Based on [[FINRA]]'s 2014 targeted examination of firms and other related initiatives, the report presents [[FINRA]]'s latest work in this critical area. |
| + | |||
| + | Key points in the report include: |
||
| + | |||
| + | * A sound [[governance]] [[framework]] with strong leadership is essential. Numerous firms made the point that board- and senior-level engagement on [[cybersecurity]] issues is critical to the success of firms’ [[cybersecurity]] programs. |
||
| + | |||
| + | * [[Risk assessment]]s serve as foundational tools for firms to understand the [[cybersecurity risk]]s they face across the range of the firm's activities and [[asset]]s — no matter the firm's size or [[business model]]. |
||
| + | |||
| + | * [[Technical controls]], a central component in a firm's [[cybersecurity]] program, are highly contingent on firms' individual situations. Because the number of potential control measures is large and situation dependent, [[FINRA]] discusses only a few representative controls here. Nonetheless, at a more general level, a [[defense-in-depth]] strategy can provide an [[effective]] approach to conceptualize control [[implementation]]. |
||
| + | |||
| + | * Firms should develop, [[implement]] and [[test]] [[incident response plan]]s. Key elements of such plans include [[containment]] and [[mitigation]], [[eradication]] and [[recovery]], investigation, [[notification]] and making customers whole. |
||
| + | |||
| + | * Broker-dealers typically use [[vendor]]s for services that provide the [[vendor]] with [[access]] to [[sensitive information|sensitive]] firm or client [[information]] or [[access]] to firm [[system]]s. Firms should manage [[cybersecurity risk]] exposures that arise from these relationships by exercising strong [[due diligence]] across the [[lifecycle]] of their [[vendor]] relationships. |
||
| + | |||
| + | * A well-trained staff is an important defense against [[cyberattack]]s. Even well-intentioned staff can become inadvertent [[vector]]s for successful [[cyberattack]]s through, for example, the unintentional [[download]]ing of [[malware]]. Effective training helps reduce the likelihood that such [[attack]]s will be successful. |
||
| + | |||
| + | * Firms should take advantage of [[intelligence-sharing]] opportunities to protect themselves from [[cyber threat]]s. [[FINRA]] believes there are significant opportunities for broker-dealers to engage in [[collaborative]] self defense through such sharing. |
||
| + | [[Category:Publication]] |
||
| + | [[Category:Financial]] |
||
| + | [[Category:Cybersecurity]] |
||
| + | [[Category:2015]] |
||
Latest revision as of 03:48, 20 February 2016
Citation[]
Financial Industry Regulatory Authority (FINRA), Report on Cybersecurity Practices (Feb. 2015) (full-text).
Overview[]
Like many organizations in the financial services and other sectors, broker-dealers (firms) are the target of cyberattacks. The frequency and sophistication of these attacks is increasing and individual broker-dealers, and the industry as a whole, must make responding to these threats a high priority.
This report is intended to assist firms in that effort. Based on FINRA's 2014 targeted examination of firms and other related initiatives, the report presents FINRA's latest work in this critical area.
Key points in the report include:
- A sound governance framework with strong leadership is essential. Numerous firms made the point that board- and senior-level engagement on cybersecurity issues is critical to the success of firms’ cybersecurity programs.
- Risk assessments serve as foundational tools for firms to understand the cybersecurity risks they face across the range of the firm's activities and assets — no matter the firm's size or business model.
- Technical controls, a central component in a firm's cybersecurity program, are highly contingent on firms' individual situations. Because the number of potential control measures is large and situation dependent, FINRA discusses only a few representative controls here. Nonetheless, at a more general level, a defense-in-depth strategy can provide an effective approach to conceptualize control implementation.
- Firms should develop, implement and test incident response plans. Key elements of such plans include containment and mitigation, eradication and recovery, investigation, notification and making customers whole.
- Broker-dealers typically use vendors for services that provide the vendor with access to sensitive firm or client information or access to firm systems. Firms should manage cybersecurity risk exposures that arise from these relationships by exercising strong due diligence across the lifecycle of their vendor relationships.
- A well-trained staff is an important defense against cyberattacks. Even well-intentioned staff can become inadvertent vectors for successful cyberattacks through, for example, the unintentional downloading of malware. Effective training helps reduce the likelihood that such attacks will be successful.
- Firms should take advantage of intelligence-sharing opportunities to protect themselves from cyber threats. FINRA believes there are significant opportunities for broker-dealers to engage in collaborative self defense through such sharing.