Welcome to the culmination of our seven-part series on Building a Gold Standard Compliance Program. In Session 7, we turn our attention to the ongoing challenge of updating and maintaining your compliance program to meet new and evolving business demands.
Threat Intelligence, Phishing Testing, and Monitoring
Cyber threats are constantly evolving, so it’s important to stay on top of new threats and address them as quickly as possible. We provide cyber alerts and ongoing monitoring to help protect your company from cyber attacks. We also offer phishing testing and monitoring services to protect your business.
CONNECT WITH US
One of the simplest ways a hacker can penetrate your network is via email using a tactic called phishing, or, in a targeted effort, spear-phishing. Successful phishing, vishing (telephone-based phishing), and spearphishing can lead to ransomware, payment fraud, and other cyber crimes. The FBI has reported that people lost $57 million to phishing schemes in 2019.
We deploy targeted email campaigns that are designed to test your employee’s ability to identify phishing threats. We use the results of our phishing tests as part of our staff security training, which covers phishing identification and other essential skills and tools for identifying threats and preventing data breaches.
We periodically issue timely alerts on cyber events and technology concerns that may be relevant to your business. Our alerts provide strategic guidance to help you protect your company and understand how to best prevent or remediate issues.
Over 100,000 domains are registered every day, many for malicious purposes. We monitor newly registered domain names and alert you when a domain name that resembles your firm’s domain is registered so that your firm can take action to combat attempts to steal sensitive information or infringe on your firm’s intellectual property.
Hackers often post sensitive data about their victims or targets on anonymous paste sites to share with the broader hacker community. We monitor select anonymous paste sites for mentions of your firm’s domain or IP addresses, as these could be indicators of an upcoming or ongoing attack.
Aponix Protect™ comprehensive cybersecurity and technology risk solution
Aponix Protect helps firms address evolving cyber risks and threats to ensure that their cybersecurity needs are covered year-round. This solution is available in three tiers, each one designed to provide firms with a flexible, robust, responsive, and cost-effective cybersecurity program.
Programmatic cybersecurity portfolio oversight will meet increased investor expectations and safeguard and grow the valuation of investments.
- Cybersecurity Resources
The public has weighed in on the SEC's proposed Rule 206(4)-9, which sets cybersecurity risk management expectations for investment firms. In this guide, we discuss the industry's reaction, exploring the main areas of concern for the Rule.
On August 11th, ACA confirmed three financial services firms are experiencing phishing attacks using identical phishing emails and tactics. Firms should be on heightened alert.
Zoom's updated Terms of Service introduce changes allowing broader use of customer data for its AI programs, raising privacy concerns due to vague language and limited opt-out options.
In part 4 of our series we tackle the myth that cyber oversight is (only) about downside risk management.
- Cybersecurity Resources
- Portfolio Company Risk Management
Introducing ACA Vantage for ESG; a straightforward and comprehensive solution to track and analyze ESG data, and support PE, private credit, and leveraged loan portfolios.
ACA Group (ACA) is honored to be recognized by the exchange-traded fund (ETF) industry for two awards during the 2023 ETF Express U.S. Awards.
ACA released two new solutions aimed at helping private fund managers worldwide comply with the recently adopted SEC Private Fund Adviser Rules.