Policy Patty Toolkit 

Making the world a little more compliant one toolkit at a time.


FINRA Publishes Report on Selected Cybersecurity Practices - 2018

Posted on January 5, 2019 at 4:35 PM
FINRA recently published its "Report on Selected Cybersecurity Practices - 2018" as part of FINRA's effort to help broker-dealers develop their cybersecurity programs, provides a detailed review of effective IT-security controls at financial firms. The five topics covered in the report are: (1) cybersecurity controls in branch offices; (2) methods of limiting phishing attacks; (3) identifying and mitigating insider threats; (4) elements of a strong penetration-testing program; and (5) establishing and maintaining controls on mobile devices. Additionally, FINRA observed firms implementing the following effective practices: 00 Establishing Written Supervisory Procedures (WSPs) to define minimum cybersecurity controls for branches and formalize oversight of branch offices; 00 Developing an inventory of branch-level data, software and hardware assets; 00 Maintaining branch technical controls; and 00 Implementing a robust branch cybersecurity examination program. Read More: http://www.finra.org/sites/default/files/Cybersecurity_Report_2018.pdf

Categories: Cybersecurity