Case Study

UnitedLex Assesses Risk to Critical Data Assets

Challenge

  • The firm wanted to understand its information security posture and enhance its ability to protect its most valuable assets in light of the media coverage on the increasing focus on investment management firms as targets for cyber crime as well as prepare for upcoming scrutiny based on the cybersecurity Risk Alert issued by the SEC's Office of Compliance Inspections and Examinations (OCIE).

Solution

  • UnitedLex deployed a team of cyber risk experts to perform a Critical Data Asset Risk (CDAR) Assessment consisting of three phases:
    • Phase I – Strategic Collaboration
    • Phase II – Critical Data Asset Identification
    • Phase III – Assess Vulnerabilities and Threats to Critical Data Assets

Business Impact

  • UnitedLex identified the critical data assets within our Client’s technical infrastructure and delivered a detailed analysis of the client’s current security posture including
    • Susceptibility to social engineering attacks due to their increased use in the financial services sector
    • Contextual analysis from internal and external vulnerability scans
    • Documentation of, controls for and compliance to information security processes and procedures
  • Provided customized information security awareness program based on the results of the CDAR Assessment