Program management
-
Executive Snapshot: Give LPs Real-Time Insight Into Your Cyber Posture
Can you easily demonstrate and explain your compliance needs to executives? If not, you need to make such capabilities a priority, particularly when it comes to cybersecurity. According to the 2024 Investment Management Compliance Testing Survey of 595 industry participants, more than 57% of investment adviser firms reported an increase in the scope and frequency…
-
ON-DEMAND: From Tech Talk to Board Talk: Mastering the Cyber Program Executive Briefing
As cyber threats in the alternative investment space continue to escalate, how ready are you to communicate the value of your cybersecurity program to investors and demonstrate preparedness to secure funding? To help you master executive-level cyber communication, Simon Eyre, Drawbridge CISO, chats with Peter Christodoulo, Partner at Francisco Partners.
-
Do Managers with a small staff still need a cyber program?
The answer is yes. Managers with fewer than 10 employees still need a strong cyber program. Cyber crime affects any size of business but the smallest Investment Managers face heightened threats from social engineering and poor credential management. What you should know – Small companies and firms suffer from a disproportionate number of attacks…
-
[Webinar Recording] Expert insights on cybersecurity in ODD
Ever wish you could get guidance and tips from an independent ODD professional on how to articulate the ins and outs of your cyber program? Watch this webinar recording that features two experienced ODD professionals, Christopher Vella, Technology Due Diligence Analyst from Albourne Partners and Lauri Martin Haas, Managing Director and Principal, Operational Due Diligence…
-
Webinar replay: SEC Cyber Rule – Get ready webinar series
Drawbridge is hosting a series of webinars on proposed Cyber Requirements for Rule 206(4)-9, Rule 38a-2, and Amendments of 204-2. Through the course of five webinars, Drawbridge will discuss what firms can accomplish now. If you missed the live event ‘Risk Assessment (Internal, Cloud, & Critical Vendors)’ , you can still catch the on-demand version…
-
Webinar Recap: SEC and Cybersecurity in 2023 – The Steps Your Firm Must Take Today
In 2022 the SEC made cybersecurity an examination priority and proposed new comprehensive cybersecurity rules for alternative investment advisors and funds. With this increased attention, cybersecurity is no longer only a matter of protecting a firm’s reputation; it’s a critical component of compliance that can significantly impact your business operations. As we await new SEC…
-
Webinar Recap: How the SEC’s New Proposed Cybersecurity Rules Could Change Your Firm’s Security Requirements
The U.S. Securities and Exchange Commission (SEC) has proposed cybersecurity rules that represent a revolutionary approach to cybersecurity and will affect all firms in the alternative investment industry – including yours. Regulatory pressure is rising – and firms must prepare now to ensure they can meet and exceed current and future expectations. But what will the SEC’s…
-
How Hedge Funds Can Stay Ahead of Ransomware with the Right Incident Response Plans
There can be no hedging your bets when it comes to defending against ransomware. Funds don’t need to look far for high profile examples of devastating attacks, from Conti’s strike on Costa Rica in April to last year’s infamous Colonial Pipeline breach. And ransomware is on the rise, thanks to the growth of trends like ransomware-as-a-service. Verizon’s 2022…
-
Are Hackers Phishing in Your Waters? Top Tips to Protect Your Firm
When cybercriminals go phishing, it’s financial firms they want to land. According to research published last month by the Anti-Phishing Working Group, the financial sector (including banks) was the most frequently victimized by phishing in Q2 2022, accounting for 27.6% of all phishing attacks. And there’s a good reason why. As a highly lucrative industry predicted to grow…
-
Cybersecurity Awareness Month: ‘See Yourself in Cyber’
Accelerate and Enhance Your CyberSecurity and Risk Management Program As Cybersecurity Awareness Month 2022 is in full swing, it’s an ideal time for businesses to review their cybersecurity, business continuity and risk management processes. These types of annual events are an easy point in the calendar where companies can take stock of their efforts and engage in…
-
Typo-Squatting: 5 Steps to Avoid Falling Victim
Today’s hackers constantly look for additional ways to capitalize on cyber security shortfalls and compromise sensitive data and information. Our clients report that social engineering attacks involving typo-squatting techniques are on the increase. Many businesses fail to realize how easily they can fall victim to this type of attack – but as real world instances…
-
How Government Regulations Can Aid Cybersecurity Defenses
Drawbridge CISO Simon Eyre authored this piece, originally featured in Security Boulevard. “In cybersecurity […] we all have a responsibility to ensure that our threat defenses are up-to-date, that our teams are educated and aware of common threats, and that we gather, store and use sensitive data appropriately. But we must also be conscious of…
