Kristin Snyder – Debevoise Data Blog

Cybersecurity

Lessons from The Financial Stability Board’s Report on Cyber Incident Reporting

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Kristin Snyder, Charu Chandrasekhar and Tristan Lockwood May 31, 2023

Big businesses, especially those with a global footprint and operating in regulated sectors, are increasingly confronted with new and diverging cyber incident reporting requirements. A single incident—even a relatively minor…

SEC

Webcast: Getting Ready for the New SEC Cyber Rules for RIAs and BDs

By: Avi Gesser, Erez Liebermann, Julie M. Riewe, Jeff Robins, Kristin Snyder and Charu Chandrasekhar March 22, 2023

On Tuesday, March 21, 2023, Julie Riewe, Kristin Snyder and Charu Chandrasekhar from our White Collar & Regulatory Defense Group, Jeff Robins from our Banking Group, and Avi Gesser and…

Cybersecurity

A Late Winter Blizzard of SEC Cybersecurity Rulemaking: the Proposed BD Cybersecurity Rules and Expanded Reg S-P and Reg SCI Obligations

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Marc Ponchione, Julie M. Riewe, Jeff Robins, Kristin Snyder, Charu Chandrasekhar, Sheena Paul, Suchita Mandavilli Brundage, Michael R. Roberts, Mengyi Xu and Ned Terrace March 20, 2023

On March 15, 2023, the U.S. Securities and Exchange Commission (the “SEC”) released a suite of proposed new rules (the “Proposed Rules”) that include: Proposed new cybersecurity rules for broker-dealers,…

Cybersecurity

Preparing for the SEC’s Cybersecurity Rules for Registered Investment Advisers, Registered Investment Companies, and Business Development Companies

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Julie M. Riewe, Kristin Snyder, Charu Chandrasekhar, Suchita Mandavilli Brundage and Jarrett Lewis March 13, 2023

In February 2022, the SEC proposed its first-ever cybersecurity rules for registered investment advisers (“RIAs”) (including RIAs to private funds) and Funds (which include registered investment companies (“RICs”) and closed-end…

Regulation

DOJ Issues Trio of Updates that Further Heighten Compliance Expectations, Particularly Involving Off-System Communications and Compensation Systems

By: Kara Brockmeyer, Andrew M. Levine, David A. O'Neil, Kristin Snyder, Bruce Yannett, Charu Chandrasekhar, Andreas A. Glimenakis and Joseph Ptomey March 6, 2023

On March 2 and 3, 2023, the U.S. Department of Justice (“DOJ”) announced several updates to its corporate enforcement policies, in significant part formalizing recent pronouncements about corporate compliance programs.…

Cybersecurity

Report Underscores FINRA’s Focus on Cybersecurity

By: Avi Gesser, Erez Liebermann, Kristin Snyder, Charu Chandrasekhar and Michael R. Roberts January 18, 2023

On January 10, 2023, the Financial Industry Regulatory Authority (“FINRA”) published its 2023 Report on FINRA’s Examination and Risk Monitoring Program (the “Report”), which is intended to provide member firms…

SEC

Recent SEC EXAMS Risk Alert Highlights Key Considerations for Reg S-ID Compliance

By: Avi Gesser, Erez Liebermann, Kristin Snyder, Charu Chandrasekhar, Michael R. Roberts and Noah L. Schwartz December 14, 2022

On December 5, 2022, the Securities and Exchange Commission (the “SEC”) Division of Examinations (“EXAMS”) published a Risk Alert providing observations from recent examinations relating to investment adviser and broker-dealers’…

Enforcement

Lessons from the SEC’s Most Recent Reg S-P Action

By: Avi Gesser, Kristin Snyder, Erez Liebermann, Charu Chandrasekhar, Johanna Skrzypczyk and Scott M. Caravello October 6, 2022

On September 20, 2022, the SEC announced settled charges and the imposition of a $35 million penalty against a dually registered investment adviser and broker-dealer (the “Firm”) for violations of Regulation…

Cybersecurity

Recent SEC Enforcement Actions Signal Key Lessons for Reg S-ID Compliance

By: Avi Gesser, Erez Liebermann, Kristin Snyder, Charu Chandrasekhar, Michael R. Roberts and Noah L. Schwartz August 2, 2022

On July 27, 2022, the Securities and Exchange Commission (“SEC”) separately charged three financial institutions with violations of Rule 201 of Regulation S-ID (“Reg S-ID”), also known as the Identity…

SEC

The SEC’s New Risk Alert Warns about the Use of Alternative Data

By: Andrew J. Ceresney, Avi Gesser, Julie M. Riewe, Kristin Snyder, Jonathan R. Tuttle, Charu Chandrasekhar and Mengyi Xu May 2, 2022

On April 26, 2022, the Division of Examinations (“EXAMS”) of the Securities and Exchange Commission (the “SEC”) issued a Risk Alert titled “Investment Adviser MNPI Compliance Issues” (“Risk Alert”) on…