The following post is written and sponsored by Alexander G. Chamandy of Envescent, LLC, the IT services provider to ARLnow.com.
In April 2015, the SEC issued a Cybersecurity Guidance update for registered investment companies and investment advisers.
The guidelines provided best practices for mitigating information leakage risks and improving data security. Too often many smaller investment houses may not have knowledgeable staff to implement and manage cybersecurity policies.
The cornerstones of cybersecurity
The best practices are shaped around four key principles: compartmentalization; encryption; restricting remote access; and, controlling the usage of devices that may compromise internal security. The most critical considerations set forth are:
- Data encryption: Backups, portable computers, data that flows outside of the company;
- Network and system firewalls: Both hardware and software firewalls for network endpoints and individual systems;
- Restricting the use of removable storage media (e.g., flash drives);
- Deploying software that monitors technology systems for unauthorized intrusions;
- Network segregation to restrict access; and
- “System hardening” with the purpose of ensuring individual systems are locked down against attack.
Create a plan and follow through with it
To accomplish these essentials, you need to put in place both a policy and budget for active cybersecurity, consistent with the size and technological complexity of the operation. The basic important thought is that every system, network appliance, server, Internet connection, remote office (and its equipment) as well as portable devices, backups and other areas where data is transmitted or stored will need individual attention by a knowledgeable cybersecurity expert.
Investment managers without the needed internal cybersecurity expertise typically seek help of an outside consultant to deal effectively with this critical issue, and minimize potential exposure. An outside opinion most likely will shed light on overlooked but critical areas – such as the firmware version of a vulnerable network appliance, or remote ports that are exposed which don’t need to be open. These types of “invisible” or ignored issues may lead to large-scale breaches and other maladies.
Staying secure pays off in the long run
The primary goal of the SEC’s cybersecurity guidance is to help set forth a common framework for institutional best practices, casting light on commonly overlooked security flaws and spelling-out common sense steps to address them.
More importantly, however, it is a critical change in the landscape of the our regulatory and legal environment. With all of the recent (and ongoing) breaches — and given what is at stake for investment managers if their systems are hacked — it makes sense to shape and adopt a cybersecurity plan. It makes even more sense to put the plan into action before cybersecurity becomes a problem for your operation.
View the SEC Cybersecurity Guideline Update here: http://www.sec.gov/investment/im-guidance-2015-02.pdf
About the author
Alexander G. Chamandy is a seasoned IT professional with 20 years of industry experience and a lifelong Arlington resident. He has deep expertise helping small businesses with a number of IT issues, including cybersecurity, data recovery, networking, deploying and maintaining servers as well as open source software.
If your small business needs IT support, consulting or website design contact Envescent, LLC. Our company has helped over 15,000 clients in the Washington, DC area and beyond since 1999.
The views and opinions expressed in the column are those of the author and do not necessarily reflect the views of ARLnow.com.
Update on Delayed Rosslyn Development — “The approved Arlington County site plan setting up the eventual demolition of two obsolete office buildings — one home to the Deep Throat garage…
Good Wednesday evening, Arlington. Today we published articles that were read a total of 14291 times… so far. 📈 Top stories The following are the most-read articles for today —…
ARLnow has been providing independent, in-depth coverage of Arlington since 2010. We are committed to keeping readers informed about the issues that matter most to the community, including those that…
Residents of The Shelton, an affordable housing development in the Green Valley neighborhood, are raising concerns about property management and poor treatment of residents. They previously raised these same issues…
Please join us on Saturday, June 3, from 2 to 4 pm for the Glencarlyn Home Tour in Arlington’s historic Glencarlyn neighborhood. Among the featured homes will be a sparkling new home by A&N Builders at 5604-4th St. South. The inviting front porch opens to a light-filled space featuring high ceiling, wood floors, gas fireplace, Pella windows, Shrock cabinets, Quartz countertop, and JennAir appliances. Doors from the family room open to a large covered porch with a few steps to the level, landscaped rear yard. Upstairs, there are four bedrooms, three bathrooms, laundry room, and linen storage. The big lower level has a rec room, gym space, and a fifth bedroom and bathroom plus even more storage. After leaving the home, stroll to the Ball-Sellers home, the oldest residence in Arlington, the community gardens at the library, Carlin Hall, and the 94 acre Glencarlyn Park. A lovely way to while away a late spring afternoon.
Is home ownership a goal of yours in 2023? Now is the time to make it happen! Grab a (virtual) drink with the area’s top Real Estate experts, learn all about the home buying process and on how you can get $1,500 towards your closing costs immediately!
Did you know the average Arlington renter will spend $150K in 5 years of renting? Stop paying down someone else’s mortgage! Join us for a Rent vs. Buy Happy Hour on Wednesday, June 7th at 6 p.m. via Zoom. If this time doesn’t work, we also are offering times convenient for your schedule!
A lot has happened in the local market since the beginning of the pandemic. Sip on your drink of choice and learn from Northern Virginia, Arlington and Washingtonian Magazines top producing agents! We will discuss the latest market updates, the home buying process and rent vs. buy cost savings. Please RSVP by clicking here.
Call/text Manavi at 703-869-6698 with any questions!
Homebuying 101: Steps to Getting Pre-Approved
Are you ready to jump into homeownership or started considering it but don’t know where to start? Financial preparation is key when thinking about purchasing your first home and the first step to getting pre-approved.
Join ACFCU’s mortgage loan officers
4th of July Celebration & Fireworks
Treat yourself this Independence Day with a world-class, private 4th of July extravaganza at the Military Women’s Memorial – a premier National Capital Region site.
Great food, fun, and the best views of Washington DC’s spectacular fireworks display. Relax, enjoy,