Whether it is the regulatory code of ethics or cybersecurity, employees need to know and understand their obligations.
Giving them a policy and procedure that is several pages and asking them to read, retain and apply the information provided is an irrational idea. There will be resistance, some who don’t understand and those who will look at you like you are crazy. It is why we feel providing training and educational materials are important.
If you know it, you will apply it. If you understand it, you will share it.
We are happy to say that through CybSecWatch, we are creating a SaaS platform that will give RIAs the control they need to reinforce their regulatory obligations and cybersecurity awareness.