Cybersecurity has become a top operational due diligence priority
Cybersecurity is a technically complex, rapidly changing area. Cyber also falls outside the traditional ODD competencies of accounting, operations and legal.
In Castle Hall's discussions with asset owners, we have heard new concerns around cyber:
- Beyond the basics, how do I know which cyber questions to ask - and what do I make of the responses?
How do I assess, manage and monitor cyber risks across my portfolio of external managers?
As an asset owner, what actions should I take with external managers who have higher cyber risk?
CyberSecurityDiligence answers these questions. Designed by Castle Hall's tech team, CyberSecurityDiligence offers a practical, independent solution to support asset owner due diligence.
Our understanding of cyber security risk in the investment management industry can often be enhanced by analysis of cyber events in other industry sectors.
On August 7th, the SEC’s OCIE released a Risk Alert outlining findings and observations from their Cybersecurity 2 Initiative – a follow-up from the initial 2014 examination of the preparedness and measures in place among firms in the asset management sphere.
Castle Hall’s executive consultant for Asia-Pacific, Alex Wise chaired a Cyber Security for AIMA at Morgan Stanley in Sydney today.