Fund Governance and Cyber-Security
This feature is upgradeable
For End Users
You can activate this feature and other links for ALL VENDORS with a VendorMatch Premium subscription. Additionally you can gain access to an increased depth of data, summary reports, RFX reports (detailed completed RFIs - available to financial institutions only) and comparison grids. Please click here for more information on Premium features.
For Vendors
Vendors can activate their links and gain access to analytics by upgrading to VendorMatch PRO. Please click here for more information
Speak with an analyst
Financial institutions and their advisors can subscribe to our Analyst Access* service. Effectively phone or (email) a friend you can have on tap advice and support provided by our analysts on this vendor, solution or solution category.
HOW TO SUBSCRIBE
To protect vendor data only financial institutions and recognized advisors can subscribe to VendorMatch Premium. Please click here for more information on Premium features
or contact us to discuss a subscription.
Subject to reasonable use.
Survey Summary
The Survey Summary provides a download of the vendor profile, solution profile and the VendorMatch Discovery survey vendor responses used to power the directory. All responses are provided by the vendor online.
Note that this report is a high level summary of the vendor's credentials and a solution's capabilities designed to assist with solution short-listing. The RFX report is the more comprehensive Request For Information report designed to support evaluation and selection, this will only show where the vendor has completed the "RFX" RFI.
HOW TO SUBSCRIBE
To protect vendor data only financial institutions and recognized advisors can subscribe to VendorMatch Premium. Please click here for more information on Premium features or contact us to discuss a subscription.
RFX Report
The RFX report is an XLS download of the Vendors response to the “RFX” Request for Information for this solution.
The RFX is a centralized golden copy of a RFI authored by our analysts based on their expertise in running real-life system evaluation and selection projects and completed by the vendor online.
Note to protect vendor that only Financial Institutions and recognized Advisor can subscribe to this feature.
In each instance the first time the link is used the user requests permission to access the RFX report and it is the vendor who is required to authorizes access. You will be alerted when the vendor has reviewed your request and granted permission.
HOW TO SUBSCRIBE
You can activate this feature with a VendorMatch Premium subscription. Please click here for more information on Premium features or contact us to discuss a subscription.
To learn more about subscribing to our service options, please contact us here
Fund Directors' Should be aware of developments in cyber-security and should address risks at board level
Cyber risk for investment funds could range from fraud to stolen intellectual property such as investment strategies and trading platform algorithms, or data relating to investors, trading, portfolios, funds or finances. The importance of safeguarding sensitive data is fundamental to good corporate governance and board directors of investment funds should be aware of the risks associated with IT security and ensure that managers and service providers are taking appropriate measures.
Very recently,the Bank of England’s Financial Policy Committee warned that financial firms in the UK are underestimating the threat of cybercrime. Cyber attacks have a significant impact on victims, with 60% of small firms forced to close within six months of an attack, according to the US National Cyber Security Alliance.
Given that investments can run into the millions (or even billions) the lack of specific risk assessment and policies can potentially be devastating. For investors, cyber resilience must be a fundamental part of assessing the value of an investment and must be reviewed alongside the financial and strategic strengths of a prospective investment target. A pre-deal due diligence assessment must identify any underlying cyber vulnerabilities, to avoid undermining future goals and protect the value of the investment itself.
With an increasing number of senior managers regularly using personal email or cloud accounts to work remotely, placing such information at a much greater risk of being breached, the importance of a clear and strategic assessment of cybercrime risk is essential.
With a statutory and regulatory duty to safeguard valuable and sensitive data held on investors, operating companies, investment strategies and their own operations, the impact could be significant, should such information come into the wrong hands.
With Fund Directors holding a fiduciary responsibility to the fund company and its associated investors it is important that directors understand the risks inherent with today’s cyber crime and should ensure that fund managers and other service providers can demonstrate a robust approach to combating operational breaches that could present risks to investors. Fund Directors themselves are privy to sensitive information as part of their over-sight responsibilities and they too form part of any due diligence process.
It is important that fund directors are held accountable also for maintaining robust IT security policies and how vulnerable their existing security is at present and continually monitoring this. Fund Directors should request information on the cyber security action plan and ensure that this is an agenda item at board meetings for continual monitoring. Any threats to the security in place or changes made should be disclosed to the board and appropriate steps taken to improve where appropriate. Such questions should be raised not only with the fund manager but all service providers to the Fund.