Skip to main content
MENU
Subscribe
  • Subscribe
  • Account
  • LOGIN
  • Topics
    • Alternatives
    • Consultants
    • Coronavirus
    • Courts
    • Defined Contribution
    • ESG
    • ETFs
    • Hedge Funds
    • Industry Voices
    • Investing
    • Money Management
    • Opinion
    • Partner Content
    • Pension Funds
    • Private Equity
    • Real Estate
    • Russia-Ukraine War
    • SECURE Act 2.0
    • Special Reports
    • White Papers
  • Rankings & Awards
    • 1,000 Largest Retirement Plans
    • Top-Performing Managers
    • Largest Money Managers
    • DC Money Managers
    • DC Record Keepers
    • Largest Hedge Fund Managers
    • World's Largest Retirement Funds
    • Best Places to Work in Money Management
    • Excellence & Innovation Awards
    • Eddy Awards
  • ETFs
    • Latest ETF News
    • Fund Screener
    • Education Center
    • Equities
    • Fixed Income
    • Commodities
    • Actively Managed
    • Alternatives
    • ESG Rated
  • ESG
    • Latest ESG News
    • The Institutional Investor’s Guide to ESG Investing
    • Climate Change: The Inescapable Opportunity
    • Impact Investing
    • 2022 ESG Investing Conference
    • ESG Rated ETFs
  • Defined Contribution
    • Latest DC News
    • DC Money Manager Rankings
    • DC Record Keeper Rankings
    • Innovations in DC
    • Trends in DC: Focus on Retirement Income
    • 2022 Defined Contribution East Conference
    • 2022 DC Investment Lineup Conference
  • Searches & Hires
    • Latest Searches & Hires News
    • Searches & Hires Database
    • RFPs
  • Performance Data
    • P&I Research Center
    • Earnings Tracker
    • Endowment Returns Tracker
    • Corporate Pension Contribution Tracker
    • Pension Fund Returns Tracker
    • Pension Risk Transfer Database
    • Future of Investments Research Series
    • Charts & Infographics
    • Polls
  • Careers
  • Events
    • View All Conferences
    • View All Webinars
    • 2022 Innovation Investing Conference
    • 2022 Defined Contribution East Conference
    • 2022 ESG Investing Conference
    • 2022 DC Investment Lineup Conference
    • 2022 Alternatives Investing Conference
Breadcrumb
  1. Home
  2. RISK MANAGEMENT
August 18, 2014 01:00 AM

Challenges of cybersecurity

  • Tweet
  • Share
  • Share
  • Email
  • More
    Reprints Print
    Roger Schillerstrom

    Trustees and other fiduciaries overseeing large asset pools face increasing challenges from cybersecurity risk, and must strengthen their risk management and preparedness to deal with these potential threats.

    Recent highly publicized security breaches have shown the vulnerability to cyberattacks of even big, sophisticated corporations, and the consequences to their businesses in terms of reputational damage and the costs of rebuilding relations have been enormous.

    Those overseeing pension funds, endowments, foundations and other institutional asset pools, including mutual funds and alternative investments, as well as custodian banks, must build stronger walls to protect against attacks by hackers. These attacks, if successful, could threaten the integrity of their operations and the financial markets.

    Development of enterprise risk management is key to addressing weaknesses and managing risks, faced both internally and externally.

    Top executives must assess their vulnerability to:



    • breaches in their internal investment management oversight and enterprise operations, including the security of their systems, as well as breaches from unauthorized staff gaining access to proprietary data;

    • leaks by their investment managers, custodians and other vendors that could compromise confidential investment details or expose systems to malicious intrusions;

    • unauthorized disclosure of beneficiaries' data and weaknesses in asset owners' and vendors' abilities to protect that confidentiality;

    • flaws in their trading systems, and breaches in confidentially that could enable front-running, or weaknesses that make them vulnerable to systematic flash crashes and other malfunctions; and

    • the corporations and other entities behind their existing and potential portfolio holdings, including equities and fixed income, whose exposure to cyberrisk could affect their business operations and as a result their market valuations.

    Some risks are within fiduciaries' control, while others are outside their reach, but they must address both, aiming to strengthen their internal systems and influence improvement of systems outside their control. Failure to address cybersecurity issues leaves funds vulnerable to losses and the executives vulnerable to lawsuits for negligence.

    Cyberrisks are a known hazard. But what makes asset overseers and money managers especially vulnerable is that the costs and chances of occurrence are unknown. There is no normal distribution of outcomes on which to base the probabilities of future effects. Cyberattacks come without warning, but fiduciaries must do more to anticipate them and prepare for them.

    Fund executives ought to conduct internal assessments of their systems' security, and use external firms to audit their security infrastructure, organizational structure and governance oversight.

    They should insist their money managers, custodians and other vendors provide details about their cyberrisk management and exposure, including audits of their security and how they are keeping up with new types of threats to systems.

    For many money managers, embracing better cyberrisk management will be a challenge, and is likely to be costly.

    David Tittsworth, executive director, Investment Adviser Association, said in a Securities and Exchange Commission round table on the issue on March 26: “Smaller firms do not have the resources the larger firms have” and could fall behind in cybersecurity.

    Fund executives should seek more information from corporations about their cyberrisk oversight by reaching out to communicate with top corporate management.

    Just as they are risks, cyberthreats can open opportunities for investors to invest in companies offering readiness services, or provide a competitive advantage for companies that embrace leading-edge systems.

    This past April, the SEC's Office of Compliance Inspections and Examinations announced an initiative aimed at identifying areas where the SEC and the investment management industry can work together to protect investors and the market from cybersecurity threats. It plans to begin by examining more than 50 registered investment advisers and broker-dealers.

    A report prepared by PricewaterhouseCoopers and commissioned by the Investor Responsibility Research Center Institute released in June, noted, “(T)he nature of this risk makes it opaque: The sources of cybersecurity threats are hidden and, unfortunately, companies are challenged to accurately assess their exposure to cyberrisks themselves, even though they have more insights and data than are available to investors.”

    “Cybersecurity threats are now widespread enough to be a concern universally,” the report said.

    Tom C.W. Lin, assistant professor of law, Levin College of Law, University of Florida, noted in a paper last year, “Technological advances have made finance faster, more global, more interconnected and less human.”

    Technology, including the Internet, has benefited those who oversee large pools of assets by making data more available and enriching analysis to enhance investment return and control risk. But it also has exposed them to more threats. Asset owners need to strengthen oversight of their systems to make sure technology is working in their interests and not leaving them vulnerable.

    Related Articles
    SEC: Vast majority of managers, broker-dealers reported cyber-related incidents
    Banks join technology chiefs to press Congress for cybersecurity bill
    DC East conference themes focus on litigation, regulation, cybersecurity threats
    More firms buy insurance for cyberattacks
    Recommended for You
    Owais Rana
    RiskFirst recruits Conning veteran to lead business development
    National Grid U.K. secures $3.4 billion buy-in with Rothesay
    National Grid U.K. secures $3.4 billion buy-in with Rothesay
    Pension plans gauge risk amid quest for gains
    Pension plans gauge risk amid quest for gains
    Alternatives: Investing Across the Spectrum
    Sponsored Content: Alternatives: Investing Across the Spectrum

    Reader Poll

    May 9, 2022
    SEE MORE POLLS >
    Sponsored
    White Papers
    Are Factors a Thing of the Past?
    Q2 2022 Credit Outlook: Carry On
    Leverage does not equal risk
    Is there a mid-cap gap in your DC plan?
    Out of the Shadows: The Revolution in Shadow Accounting
    The pivotal role of fixed income markets in the ESG revolution
    View More
    Sponsored Content
    Partner Content
    The Industrialization of ESG Investment
    For institutional investors, ETFs can make meeting liquidity needs easier
    Gold: the most effective commodity investment
    2021 Investment Outlook | Investing Beyond the Pandemic: A Reset for Portfolios
    Ten ways retirement plan professionals add value to plan sponsors
    Gold: an efficient hedge
    View More
    E-MAIL NEWSLETTERS

    Sign up and get the best of News delivered straight to your email inbox, free of charge. Choose your news – we will deliver.

    Subscribe Today
    May 9, 2022 page one

    Get access to the news, research and analysis of events affecting the retirement and institutional money management businesses from a worldwide network of reporters and editors.

    Subscribe
    Connect With Us
    • RSS
    • Twitter
    • Facebook
    • LinkedIn

    Our Mission

    To consistently deliver news, research and analysis to the executives who manage the flow of funds in the institutional investment market.

    About Us

    Main Office
    685 Third Avenue
    Tenth Floor
    New York, NY 10017-4036

    Chicago Office
    130 E. Randolph St.
    Suite 3200
    Chicago, IL 60601

    Contact Us

    Careers at Crain

    About Pensions & Investments

     

    Advertising
    • Media Kit
    • P&I Content Solutions
    • P&I Careers | Post a Job
    • Reprints & Permissions
    Resources
    • Subscribe
    • Newsletters
    • FAQ
    • P&I Research Center
    • Site map
    • Staff Directory
    Legal
    • Privacy Policy
    • Terms and Conditions
    • Privacy Request
    Pensions & Investments
    Copyright © 1996-2022. Crain Communications, Inc. All Rights Reserved.
    • Topics
      • Alternatives
      • Consultants
      • Coronavirus
      • Courts
      • Defined Contribution
      • ESG
      • ETFs
      • Hedge Funds
      • Industry Voices
      • Investing
      • Money Management
      • Opinion
      • Partner Content
      • Pension Funds
      • Private Equity
      • Real Estate
      • Russia-Ukraine War
      • SECURE Act 2.0
      • Special Reports
      • White Papers
    • Rankings & Awards
      • 1,000 Largest Retirement Plans
      • Top-Performing Managers
      • Largest Money Managers
      • DC Money Managers
      • DC Record Keepers
      • Largest Hedge Fund Managers
      • World's Largest Retirement Funds
      • Best Places to Work in Money Management
      • Excellence & Innovation Awards
      • Eddy Awards
    • ETFs
      • Latest ETF News
      • Fund Screener
      • Education Center
      • Equities
      • Fixed Income
      • Commodities
      • Actively Managed
      • Alternatives
      • ESG Rated
    • ESG
      • Latest ESG News
      • The Institutional Investor’s Guide to ESG Investing
      • Climate Change: The Inescapable Opportunity
      • Impact Investing
      • 2022 ESG Investing Conference
      • ESG Rated ETFs
    • Defined Contribution
      • Latest DC News
      • DC Money Manager Rankings
      • DC Record Keeper Rankings
      • Innovations in DC
      • Trends in DC: Focus on Retirement Income
      • 2022 Defined Contribution East Conference
      • 2022 DC Investment Lineup Conference
    • Searches & Hires
      • Latest Searches & Hires News
      • Searches & Hires Database
      • RFPs
    • Performance Data
      • P&I Research Center
      • Earnings Tracker
      • Endowment Returns Tracker
      • Corporate Pension Contribution Tracker
      • Pension Fund Returns Tracker
      • Pension Risk Transfer Database
      • Future of Investments Research Series
      • Charts & Infographics
      • Polls
    • Careers
    • Events
      • View All Conferences
      • View All Webinars
      • 2022 Innovation Investing Conference
      • 2022 Defined Contribution East Conference
      • 2022 ESG Investing Conference
      • 2022 DC Investment Lineup Conference
      • 2022 Alternatives Investing Conference