FINRA

About

Compliance Excellence, Investor Protection

At Elevate, we work with broker-dealers and registered investment advisors to ensure you have adequate controls in place to pass examinations and mitigate cybersecurity threats. We have a streamlined approach to performing the reviews and provide you with the advice and expertise to assist you.

FINRA reviews your firm’s ability to protect the confidentiality, integrity, and availability of sensitive customer information. This includes reviewing each firm’s compliance with SEC regulations, including:

  • Regulation S-P (17 CFR §248.30), requires firms to adopt written policies and procedures to protect customer information against cyber-attacks and other forms of unauthorized access.
  • Regulation S-ID (17 CFR §248.201-202), outlines a firm’s duties regarding the detection, prevention, and mitigation of identity theft.
  • The Securities Exchange Act of 1934 (17 CFR §240.17a-4(f)), requires firms to preserve electronically stored records in a non-rewriteable, non-erasable format.

FINRA also assesses your company’s approach to cybersecurity risk management, to include:

  • Technology governance
  • System change management
  • Risk assessments
  • Technical controls
  • Incident response
  • Vendor management
  • Data loss prevention
  • Staff training

How Can Elevate Help

  • Document and identify your PII and asset inventory
  • Perform the gap analysis against the control requirements
  • Document policies and procedures
  • Provide training options
  • Perform technical testing of your systems
  • Serve as your expert in Cyber Security and IT compliance matters

meet with a specialist
Skip to content