Long-time Alabama Securities Commission Director Joe Borg is back as president of the North American Securities Administrators Association — his third time filling the seat.
What’s on his mind 16 years after giving his first speech as NASAA president? While enforcement against fraud is “the heart” of state securities regulators’ work, Borg noted during his late September inaugural speech at NASAA’s annual conference in Seattle his heightened focus on scams against seniors, advisors’ lack of cybersecurity preparedness, along with “unresolved matters” regarding unpaid arbitration awards.
Borg told me in separate comments at press time in mid-October that cybersecurity preparation for investment advisors is “more of an immediate concern for state securities regulators,” and that state securities regulators need to study the unpaid arbitration awards issue “before we can address it.”
NASAA’s been concerned with the widespread use of mandatory pre-dispute arbitration clauses in customer contracts used by broker-dealers and, most recently, investment advisors, and has advocated for reform in the securities arbitration system.
A study released last year by the Public Investors Arbitration Bar Association on unpaid arbitration awards found that 75 FINRA arbitration awards, or about one-third of the total number handed down in 2013, were unpaid.
Borg told state securities regulators at their annual meeting that he is also “encouraged by the industry’s response” to the NASAA Model Fee Disclosure Schedule, with several broker-dealers recently joining the “growing list” of BDs using a fee schedule based on a model developed by NASAA’s Model Fee Disclosure Working Group to enhance disclosure to investors.
BD Uptake of Model Fee Disclosure
NASAA assembled a working group to develop the Model Fee Disclosure after a survey conducted by the group revealed a “wide disparity” among broker-dealers in how they disclose fees, as well as the fact that BDs are using “questionable practices” in relation to fee charges and markups.
The following firms agreed to use the NASAA Model Fee Disclosure Schedule: Merrill Lynch; Voya Financial Advisors Inc.; Cetera Financial Group; and Ladenburg Thalmann Financial Services Inc.
Borg, who will serve a one-year term, was first elected as NASAA president in 2001, and again in 2006.
Just as the Securities and Exchange Commission recently revealed a cyberattack on its EDGAR system for corporate filings, state securities regulators are raising the red flag on advisors’ cybersecurity preparedness.
NASAA announced recently that a series of more than 1,200 coordinated exams of state-registered investment advisors by state securities examiners uncovered nearly 700 deficiencies involving cybersecurity.
NASAA also announced this it is now providing a cybersecurity checklist for advisors.
“Cybersecurity is a growing challenge and no investment advisor of any size can afford the loss in client trust — much less financial losses — that will result from a serious cybersecurity failure,” Mike Rothman, former NASAA president and Minnesota commissioner of commerce, said when he announced the exam result.
The exams in 37 U.S. jurisdictions took place between January and June, with 2017 being the first year that cyber was tracked.
State examiners found 698 deficiencies relating to cybersecurity, with the top five including:
no or inadequate cybersecurity insurance;
no testing of cybersecurity vulnerability;
lack of procedures regarding securing or limiting access to devices;
no technology specialist or consultant; and
a lack of procedures regarding hardware and software updates or upgrades.
The NASAA Cybersecurity Checklist for Investment Advisers includes 89 areas to help state-registered advisors identify, protect and detect cybersecurity vulnerabilities; and to respond to and recover from cyber events.
NASAA’s 2017 results of the 1,203 reported exams of state-registered investment advisors uncovered 7,907 deficiencies in 25 compliance areas, compared with 4,983 deficiencies in 22 compliance areas uncovered by 1,170 exams in 2015.
State securities examiners collect the data every two years and report it voluntarily to NASAA’s Investment Adviser Operations Project Group.