December 20, 2018

FINRA issues guidance on cybersecurity practices for broker-dealers

In its 2018 Report on Selected Cybersecurity Practices, FINRA presented its observations regarding effective practices that broker-dealers have implemented to address certain cybersecurity risks.  The guidance addresses strengthening cybersecurity controls in branch officers, defending against phishing attacks, identifying and mitigating insider threats, developing penetration testing programs, and establishing and maintaining controls on mobile devices.  FINRA describes the 2018 Report as a supplement to its 2015 Report on Cybersecurity Practices, which addresses the elements of holistic firm-level cybersecurity programs and provides guidance to firms seeking to improve existing protocols.

2018 Report | 2015 Report