In 2017, the SEC’s Office of Compliance Inspections and Examinations (OCIE) looked at 75 financial firms to get an update on their cybersecurity preparedness.
While OCIE found improvements since its 2014 round of examinations, it reported that firms could still do better. Their findings are recommended reading for anyone wanting to benchmark or toughen up their cybersecurity measures. The report reveals what most firms are doing – but most importantly, it also highlights best practice at firms OCIE considers “robust”.