Developments in Cybersecurity Law Governing the Investment Industry
By: Luke T. Cadigan, Sean P. Mahoney
The Investment Lawyer, Vol.21, No. 8, August 2014
Reprinted with Permission
Regulatory focus on cybersecurity is intensifying. Unlike other compliance matters, the deterrent effect of enforcement actions following data security breaches may be insufficient to achieve regulators’ purpose of ensuring that technology platforms are secure before an event occurs. Thus, in the area of cybersecurity, regulators appear to be shunning granular, prescriptive rules and instead insisting upon more holistic management of cybersecurity risk. Read More