SYS-CON MEDIA Authors: Elizabeth White, Yeshim Deniz, Peter Silva, Pat Romanski, Blue Box Blog

News Feed Item

Smarsh Survey Reveals How Compliance Can Keep Pace in Complex Regulatory Environment

Smarsh®, the leading provider of hosted archiving solutions for compliance and e-discovery, today released its fourth annual Electronic Communications Compliance Survey Report at FINRA’s 2014 Annual Conference. This year’s results shed light on the compliance gaps that expose financial services firms to risk, and show that firms accept the use of an expanding number of electronic message types—along with their associated compliance implications.

“This year’s survey results demonstrate how compliance officers are adjusting to new regulatory guidance around the oversight of electronic communications amid a growing list of communication channels – LinkedIn, Twitter, and instant messaging, for instance – that firms may not have used just a few years ago,” said Stephen Marsh, CEO and founder of Smarsh. “Regulatory agencies have made it clear that the oversight of electronic messaging is a key compliance priority, and firms’ surveillance policies and procedures will come under more scrutiny than ever.”

The number one source of FINRA fines in 2013 was related to electronic messaging. The total cost of fines increased by 132 percent, making noncompliance for member firms an increasingly expensive proposition.1 This year the SEC has also prioritized examinations for registered firms that have never been examined.

The survey report addresses several additional aspects of electronic communications compliance. Key findings include:

Complexity in Electronic Message Supervision

  • The number of electronic messaging platforms allowed by firms for business purposes has nearly doubled in three years.
  • The vast majority of respondents (80 percent) believe message supervision is more complex than ever and as such, 83 percent agree that a single platform to manage and search electronic messages is important to critically important.
  • While the number of electronic messaging types being archived also nearly doubled, there is still a significant gap between allowed channels and those that are archived for retention and supervision.

Text/SMS Messaging

  • Nearly all respondents (88 percent) work for firms that issue at least one type of mobile device to employees.
  • Despite easy access to text/SMS messaging, more than one quarter of respondents do not have a policy governing use or prohibiting text/SMS messaging. Out of those who do allow text/SMS messaging, more than two-thirds do not have a retention/supervision solution in place for it.
  • Fifty-nine percent of respondents have minimal to no confidence they could produce requested text/SMS messages if requested as part of an audit.

Preparing for Exams

  • Never-before examined registered investment advisors (RIAs) need to be prepared for increased regulatory scrutiny. Insights from those who have been examined more recently and/or frequently will help RIAs prepare for exams.
  • RIAs lag behind FINRA-member broker-dealers (BDs) in retention and supervision systems for electronic messaging channels such as instant messaging, text/SMS messaging, Twitter, Facebook and LinkedIn.
  • More than half of RIAs (53 percent) are concerned with their ability to produce data upon request, whereas only 29 percent of BDs expressed concern.

About the survey

In January and February 2014, 283 individuals in financial services with direct compliance supervision responsibilities participated in a 31-question survey designed to identify current trends and to share insight on policies and practices surrounding the retention, supervision and protection of electronic communications. View the full survey report at: www.smarsh.com/2014compliancesurvey.

About Smarsh

Smarsh® delivers cloud-based archiving solutions for the information-driven enterprise. Its centralized platform provides a unified compliance and e-discovery workflow across the entire range of digital communications, including email, public and enterprise social media, websites, instant messaging and mobile messaging. Founded in 2001, Smarsh helps more than 20,000 organizations meet regulatory compliance, e-discovery and record retention requirements. The company is headquartered in Portland, Oregon, with offices in New York City, Atlanta, Boston, Los Angeles and London.

1Sutherland (2014) “Annual Sutherland Analysis of FINRA Sanctions Shows 27% Decrease in Fines; Number of Cases Nearly Identical” [Press Release]. Retrieved from http://www.sutherland.com/NewsCommentary/Press-Releases/161244/Annual-Sutherland-Analysis-of-FINRA-Sanctions-Shows-27-Decrease-in-Fines-Number-of-Cases-Nearly-Identical

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
What exactly is a cognitive application? In her session at 16th Cloud Expo, Ashley Hathaway, Product Manager at IBM Watson, will look at the services being offered by the IBM Watson Developer Cloud and what that means for developers and Big Data. She'll explore how IBM Watson and its partnerships will continue to grow and help define what it means to be a cognitive service, as well as take a look at the offerings on Bluemix. She will also check out how Watson and the Alchemy API team up to off...
More organizations are embracing DevOps to realize compelling business benefits such as more frequent feature releases, increased application stability, and more productive resource utilization. However, security and compliance monitoring tools have not kept up and often represent the single largest remaining hurdle to continuous delivery. In their session at DevOps Summit, Justin Criswell, Senior Sales Engineer at Alert Logic, Ricardo Lupo, a Solution Architect with Chef, will discuss how to ...
Thanks to Docker, it becomes very easy to leverage containers to build, ship, and run any Linux application on any kind of infrastructure. Docker is particularly helpful for microservice architectures because their successful implementation relies on a fast, efficient deployment mechanism – which is precisely one of the features of Docker. Microservice architectures are therefore becoming more popular, and are increasingly seen as an interesting option even for smaller projects, instead of bein...
SYS-CON Events announced today that Site24x7, the cloud infrastructure monitoring service, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Site24x7 is a cloud infrastructure monitoring service that helps monitor the uptime and performance of websites, online applications, servers, mobile websites and custom APIs. The monitoring is done from 50+ locations across the world and from various wireless carr...
SYS-CON Events announced today that WSM International (WSM), the world’s leading cloud and server migration services provider, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. WSM is a solutions integrator with a core focus on cloud and server migration, transformation and DevOps services.
The Workspace-as-a-Service (WaaS) market will grow to $6.4B by 2018. In his session at 16th Cloud Expo, Seth Bostock, CEO of IndependenceIT, will begin by walking the audience through the evolution of Workspace as-a-Service, where it is now vs. where it going. To look beyond the desktop we must understand exactly what WaaS is, who the users are, and where it is going in the future. IT departments, ISVs and service providers must look to workflow and automation capabilities to adapt to growing ...
SYS-CON Events announced today that SafeLogic has been named “Bag Sponsor” of SYS-CON's 16th International Cloud Expo® New York, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. SafeLogic provides security products for applications in mobile and server/appliance environments. SafeLogic’s flagship product CryptoComply is a FIPS 140-2 validated cryptographic engine designed to secure data on servers, workstations, appliances, mobile devices, and in the Cloud....
The speed of product development has increased massively in the past 10 years. At the same time our formal secure development and SDL methodologies have fallen behind. This forces product developers to choose between rapid release times and security. In his session at DevOps Summit, Michael Murray, Director of Cyber Security Consulting and Assessment at GE Healthcare, examined the problems and presented some solutions for moving security into the DevOps lifecycle to ensure that we get fast AND ...
SYS-CON Events announced today that Akana, formerly SOA Software, has been named “Bronze Sponsor” of SYS-CON's 16th International Cloud Expo® New York, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. Akana’s comprehensive suite of API Management, API Security, Integrated SOA Governance, and Cloud Integration solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Thi...
There has been a lot of discussion recently in the DevOps space over whether there is a unique form of DevOps for large enterprises or is it just vendors looking to sell services and tools. In his session at DevOps Summit, Chris Riley, a technologist, discussed whether Enterprise DevOps is a unique species or not. What makes DevOps adoption in the enterprise unique or what doesn’t? Unique or not, what does this mean for adopting DevOps in enterprise size organizations? He also explored differe...
In his session at DevOps Summit, Tapabrata Pal, Director of Enterprise Architecture at Capital One, will tell a story about how Capital One has embraced Agile and DevOps Security practices across the Enterprise – driven by Enterprise Architecture; bringing in Development, Operations and Information Security organizations together. Capital Ones DevOpsSec practice is based upon three "pillars" – Shift-Left, Automate Everything, Dashboard Everything. Within about three years, from 100% waterfall, C...
SYS-CON Events announced today that Plutora, Inc., the leading global provider of enterprise release management and test environment management SaaS solutions, will exhibit at SYS-CON's DevOps Summit 2015 New York, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Headquartered in Mountain View, California, Plutora provides enterprise release management and test environment SaaS solutions to clients in North America, Europe and Asia Pacific. Leading companies ...
Skeuomorphism usually means retaining existing design cues in something new that doesn’t actually need them. However, the concept of skeuomorphism can be thought of as relating more broadly to applying existing patterns to new technologies that, in fact, cry out for new approaches. In his session at DevOps Summit, Gordon Haff, Senior Cloud Strategy Marketing and Evangelism Manager at Red Hat, will discuss why containers should be paired with new architectural practices such as microservices ra...
SYS-CON Events announced today that Open Data Centers (ODC), a carrier-neutral colocation provider, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. Open Data Centers is a carrier-neutral data center operator in New Jersey and New York City offering alternative connectivity options for carriers, service providers and enterprise customers.
Thanks to Docker, it becomes very easy to leverage containers to build, ship, and run any Linux application on any kind of infrastructure. Docker is particularly helpful for microservice architectures because their successful implementation relies on a fast, efficient deployment mechanism – which is precisely one of the features of Docker. Microservice architectures are therefore becoming more popular, and are increasingly seen as an interesting option even for smaller projects, instead of bein...