Historically, the SEC focused on broker-dealers and investment advisers’ protection of customer data and information, said John Reed Stark, managing director of the digital risk management firm Stroz Friedberg, and a former chief of the SEC Enforcement Division’s Office of Internet Enforcement.
Now, the SEC looks “at cybersecurity as: if you’re a regulated entity and you don’t have cybersecurity, that represents a threat to the global marketplace,” Stark said.
via SEC Targeting Firms’ Cybersecurity as Market Risk — Bloomberg BNA
