NFA Cybersecurity Policies and Procedures Now Effective
The NFA reminded member firms that they are required to adopt and enforce written policies and procedures to secure customer data and access to electronic systems. The new requirements became effective on March 1, 2016.
The Cybersecurity Interpretive Notice requires member firms to adopt and enforce (i) written policies and procedures to secure customer data and access to electronic systems and (ii) an information systems security program. The Notice grants firms a degree of flexibility in determining what constitutes "diligent supervision."
Related Articles
-
The NFA established general requirements for the information systems security programs of futures commission merchant, commodity trading advisor, commodity pool operator and introducing broker members.
-
The NFA reminded members to adopt and enforce written policies and procedures to secure customer data and access to their electronic systems by March 1, 2016.
-
The NFA will hold cybersecurity workshops for members in Chicago, New York and Los Angeles on February 2, 4 and 9, 2016, respectively.
-