This past week, the Commodity Futures Trading Commission (CFTC) settled an enforcement action in which it had alleged that futures commission merchant AMP Global Clearing LLC violated 17 C.F.R. 166.3 (duty of supervision) by failing to diligently supervise implementation of a critical component of its information systems security program (ISSP). As a result, AMP suffered a cybersecurity breach that led to loss of nearly 100,000 files, including customers’ personal identifying information. As a result of the settlement, AMP paid a $100,000 fine and, undoubtedly, faces significant other expenses in dealing with the customers for whom it lost private information. AMP will also have to provide written verification to the CFTC of its efforts to strengthen its network security and ensure compliance with its ISSP….
Privacy | Trace Schmeltz