Insights
The cyber landscape never stops shifting – and neither should your perspective. Our Insights bring you expert commentary, thought leadership and practical guidance on the issues shaping the alternative investments sector. Stay ahead of regulators, satisfy investors, and strengthen your resilience with analysis from the team that knows your world best.
-
The Cyber Security Ecosystem: Trust but Verify
In cybersecurity, independence doesn’t mean going it alone—it means making informed decisions while leveraging a strong network of trusted providers. Alternative investment firms depend on Managed Service Providers (MSPs), cyber risk advisors, and compliance experts to enhance their security, but they must also maintain autonomy in assessing risks, implementing best practices, and verifying protections. This…
-
Remaining Resilient Against the Threat of Cyber Attacks
The increased regulatory demand for operational resilience is reforming how the alternative investment space manages cybersecurity. Cyber risks are a top concern for fund managers, investors, and regulators due to the immense potential for financial, operational, and reputational impacts that cyber incidents pose. High-profile cyber events like Microsoft’s CrowdStrike outage reiterate the need for firms…
-
Executive Snapshot: Give LPs Real-Time Insight Into Your Cyber Posture
Can you easily demonstrate and explain your compliance needs to executives? If not, you need to make such capabilities a priority, particularly when it comes to cybersecurity. According to the 2024 Investment Management Compliance Testing Survey of 595 industry participants, more than 57% of investment adviser firms reported an increase in the scope and frequency…
-
The Interplay of AI, Vendor Risk, and Human Error in Cybersecurity
An effective cyber program must have the ability to continuously evaluate your critically important vendors and train your team members on the most up-to-date cybersecurity standards. Drawbridge’s CEO William Haney was recently joined by our CISO Simon Eyre and Spencer Wilson, SS&C Technologies’ Director of Strategy and Operations for a webinar all about the increasing…
-
Takeaways from the SEC’s Compliance Seminar: What to Know for 2025
In November, the SEC held one of its regular compliance outreach seminars for investment companies and investment advisers. In attendance was Drawbridge’s own Simon Eyre, along with SEC Compliance Solutions’ CEO Elizabeth Cope. Seminar discussions centered on the SEC examination priorities published at the end of October, showing a clear emphasis on strengthening existing rules.…
-
Approaching Your GPs and LPs About Cybersecurity
We all know that a strong cyber program plays a vital role in meeting regulator expectations, but what about when you need to bring the conversation to your firm’s LPs? Handling cyber discussions with executives requires you to speak their language. Drawbridge’s CISO Simon Eyre recently sat down with Peter Christodoulo of Francisco Partners to…
-
How to Protect Your Firm from AI Misuse?
Earlier this month, the New York Department of Financial Services (NYDFS) officially announced new guidance for addressing and mitigating AI-related cybersecurity risks. In its industry letter, the regulator highlights four specific risks to pay special attention to: AI-enabled social engineering AI-enhanced cybersecurity attacks Exposure or theft of vast amounts of non-public information Increased vulnerabilities due…
-
How to Prepare Your Firm for SEC Compliance in 2025?
In May 2024, the U.S. Securities and Exchange Commission announced the Regulation S-P amendment. We covered the S-P Amendment update when news of this regulatory change first broke. Per the SEC’s press release, the amendment applies to broker-dealers, investment companies, registered investment advisers, and transfer agents. Specific requirements fell into three main categories: Incident response…
-
Cyber Safe: 2024 best practices for alts managers on the go
In our third chapter of our cyber safe series, we’re exploring how you can keep your reputation and assets safe while on the go. With juice jacking and device theft becoming too common, check out our top six recommendations for excellent data privacy practices while traveling: Before traveling, double-check that your devices’ antivirus and anti-malware…
-
Cyber Safe 2024: personal best practices for alts managers
In part two of our cyber safety series, we explore the personal side of information security. What happens when your job follows you home? Here’s our ultimate list to avoid getting compromised when you bring the office home with you: Use a personal password manager. In addition to minimizing the risk of using weak or…
-
Cyber Safe: 2024 corporate best practices for alts managers
For Cybersecurity Awareness Month, we’re launching our Cyber Safe series. Since cybersecurity is a team sport, we’ll start by sharing some best practices for the alternative investment community in the office, at home, or on the go! At the end of the month, we’ll host our first masterclass: From Tech Talk to Board Talk: Mastering…
-
3 Often overlooked risks among Hedge Funds
Drawbridge knows a thing or two about mitigating cyber risks among Hedge Funds. Drawbridge is the leading cyber provider among Alternative Investment Managers, serving over 1,000 clients. Read the three most commonly overlooked cyber risks that Drawbridge typically finds and helps solve when engaging with new Hedge Fund clients. Limit access from personal emails Of…
