MENU Close
Close
  • Home
  • Services
  • Attorneys
  • Resources
  • News & Events
  • About Us
  • Contact Us
  • Join our Team
Search
Back
    Quick Links:
    Join Webinar
    Read News
    Our Location
    A
    Alternative Dispute ResolutionAntitrust & Trade RegulationAppellate Practice
    B
    Banking & Financial ServicesBankruptcy, Creditors’ Rights, and Financial RestructuringBeer LawBusiness Law
    C
    Cannabis LawConstruction LawCriminal Defense
    E
    Economic Development LawElder Care & Special Needs LawElectronic Discovery ("E-Discovery")Environmental LawEstate Planning and Administration & Wealth PreservationExecutive Compensation, Employment, ERISA, and Employee Benefits
    F
    Food, Beverage & HospitalityFranchise Law
    H
    Health Care & Life SciencesHealth Care ProvidersHigher EducationHospitals and Health Networks
    I
    ImmigrationInsurance CoverageIntellectual PropertyIntellectual Property Litigation, Arbitration, and Dispute ResolutionIntellectual Property Portfolio Strategy, Management & LicensingInternational BusinessInternet Law
    L
    Labor & EmploymentLiquor Law, Licensing, Manufacturing, and DistributionLitigation
    M
    Media LawMergers & AcquisitionsMunicipal Law
    N
    Non-Profit Law
    P
    Patent Preparation and ProsecutionPharmaceutical / Medical Devices / Pharma ServicesProducts and Consumer Liability DefenseProfessional LiabilityPublic Utilities
    R
    Real Estate, Finance, and Land Use
    S
    SecuritiesSolar Energy
    T
    TaxationTelecommunicationsTrademark & Copyright Protection & Enforcement
    V
    Venture Tech & Emerging Growth Companies
    W
    White Collar Investigations & DefenseWorkers’ Compensation
    • New Jersey
    • New York
    • Pennsylvania
    • Blogs
    • Articles
    • Podcasts
    • COVID-19 Resources
    • News
    • Events
    • Webinars
    • About Us
    • Delivering Value
    • Diversity & Inclusion
    • Meritas

    New Jersey

    400 Crossing Boulevard
    8th Floor
    Bridgewater, NJ 08807
    Phone:(908) 722-0700
    Fax:(908) 722-0755

    28 Valley Road
    Suite 1
    Montclair, NJ 07042

    New York

    7 Times Square
    21st Floor
    New York City, NY 10036
    Phone:(212) 808-0700
    Fax:(212) 808-0844

    Pennsylvania

    515 West Hamilton Street
    Suite 502
    Allentown, PA 18101
    Phone:(610) 391-1800
    Fax:(610) 391-1805

    • What sets us apart
    • Attorneys
    • Other Professionals
    • Professional Development
    • Non-Discrimination Policy

    Categories

    Anti-Trust/Trade Regulations Banking/Financial Services Business Operations Choice of Entity Compliance Corporate Finance/Securities Corporate Governance Economic Development Law Entity Formation Franchise Law General Liquor Law Mergers & Acquisitions Public Utilities Real Estate Tax
    Blogs > Biz Law Blog > Meeting Specified Standards: the SEC’s...
    Of Counsel
    Peter D. Hutcheon
    Visit Profile

    Meeting Specified Standards: the SEC’s OCIE Assesses Compliance

    Meeting Specified Standards: the SEC’s OCIE Assesses Compliance

    The Fall of 2020 has been a time of particular focus on “compliance” by the U.S. Securities and Exchange Commission (“SEC”), and specifically by its Office of Compliance Inspections and Examinations (“OCIE”). On September 15, 2020, the OCIE issued a Risk Alert warning registered investment advisers and broker/dealers to improve their cybersecurity protocols to guard against unauthorized intrusion in customer accounts, especially intrusion using a technique called “Credential Stuffing.” See my November 19, 2020, blog post, “Credential Stuffing: Cyber Intrusions Into Client Accounts of Broker/Dealers and Investment Advisors.” The OCIE followed with two more Risk Alerts in November: the first, issued November 9, warned of shortfalls in supervising operations at branch offices; and the second, issued November 19, identified failures generally found across the registered investment adviser industry.

    Securities Exchange Act of 1934

    On September 30, 2020, Meredith A. Simmons, Esq., the Chief Compliance Officer (“CCO”) of a registered investment adviser, consented to a settlement of an enforcement action brought by the SEC for record retention and related violations in the matter of Meredith A. Simmons, Esq., Securities Exchange Act of 1934 Release No. 90061 (Sept. 30, 2020). The CCO interviewed a research analyst in the firm to make sure the analyst did not have material non-public information prior to the advisory firm making an investment in a particular company. She drafted a blank memo with the date and name, but without any other content. The following day the company in question announced that it had agreed to be acquired.

    Eleven months later, after an inquiry from her supervisor, she completed the blank memo, although with a number of factual inaccuracies. Six weeks later, in response to an OCIE examination, the “ex post facto” memo was given to the OCIE as a purported record made contemporaneously after her interview with the analyst. The SEC discovered the fabrication and brought an enforcement action resulting in a censure, a $25,000 fine, a three-year bar from serving as a compliance officer, AND a one-year bar from practicing as an attorney before the SEC.

    Investment Advisers Act of 1940: the Compliance Rule

    Then, on October 19, 2020, Commissioner Hester Peirce spoke at the conference of the National Society of Compliance Professionals. Her address focused on the liability exposure of compliance officers, and she pointedly mentioned the Simmons case, “a compliance officer created and backdated compliance memoranda.” She noted that the rule applicable to the compliance function, Rule 206(4)-7 adopted under the Investment Advisers Act of 1940 (the “Compliance Rule”), supports negligence-based liability. And she went on to note that despite the origins of negligence (a failure to meet an applicable standard), “in practice... the rule’s standard has looked more like strict liability” (citing former SEC Commissioner Dan Gallagher).

    Commissioner Peirce then expressed concern that persons will not be willing to serve as compliance officers when their judgments are so vulnerable to being second-guessed. One of the steps she advocated, to improve both the quality of compliance and the willingness to serve, is to create “public-private advisory groups charged with meeting periodically to discuss current and potential regulatory, examination, and enforcement efforts, and to publish guidance and recommendations to compliance officer and regulators reflecting the insight of both regulators and the regulated,” citing a New York City Bar Report issued October 16, 2020.

    OCIE Risk Alert

    The November 9 OCIE Risk Alert acknowledged the administrative difficulties of managing compliant operations involving branch offices but nonetheless found registrants had fallen short. The report deals with examinations by OCIE of almost 40 investment advisers, with multiple branches and about 185,000 clients, managing approximately $110 billion, as part of the OCIE’s “Multi-Branch Initiative.” OCIE found common deficiencies throughout all of the investment advisory firms. Some of the most material of these were:

    1. Failure to have comprehensive written policies concerning compliance and supervision, including the failure to have adequate “Code of Ethics” rules, failure to have clear custody rules, and inadequate fiduciary duty requirements, especially concerning fees, expenses, and advertising
    2. Inadequate supervision of the type of investment advice being provided, and inadequate disclosure and management of conflicts
    3. Discriminatory allocation of investment opportunities; more than one-half of the advisers examined were found deficient in the investment recommendations they made, failing to disclose the conflict and too often steering clients to higher-cost investments

    All too frequently, the examinations found that the branch offices had too much leeway and exposed clients unnecessarily to higher costs and/or the risk of loss.

    OCIE Observations: Investment Adviser Compliance Programs

    On November 19, the OCIE published another Risk Alert entitled “OCIE Observations: Investment Adviser Compliance Programs,” setting forth the most common deficiencies in investment advisor compliance programs, as identified by OCIE in the course of its inspections and examinations of investment advisers. The OCIE notes in this Risk Alert that the Compliance Rule “does not enumerate specific items that advisers must include in their policies and procedures.” Rather, “each adviser should adopt policies and procedures” that reflect the nature of its operations. These policies and procedures “should be designed to prevent violations from occurring, detect violations that have occurred, and correct promptly any violations that have occurred.” These policies and procedures are to be reviewed at least annually “to determine their adequacy and effectiveness.”

    Such review is to consider compliance matters that arose in the prior period, as well as changes in the adviser’s business. Interim reviews are STRONGLY suggested in the case of significant compliance matters, changes in business, or regulatory developments. The Compliance Rule does require each registered investment adviser to have a designated CCO, who is to have both securities market knowledge and sufficient authority “to compel others to adhere to the compliance policies and procedures.”

    What then were the common deficiencies identified by the OCIE? In its “laundry list” of these in the Risk Alert, the OCIE begins to contradict its own pronouncement that no specific items must be addressed in the adviser’s policies and procedures. The observed deficiencies, as set forth in the Risk Alert, are as follows:

    1. Inadequate resources including information technology, the inadequate time commitment of the CCO, lack of adequate training programs, failure to revise policies and procedures to reflect changes (such as growth) in the firm’s business
    2. Insufficient authority, including access to senior management
    3. Inadequate annual reviews, including failure to identify risks (such as cybersecurity, use of third party managers, etc.) and to “audit” those areas
    4. Failure to implement required actions, including reviewing client accounts for performance consistent with client objectives, reviewing advertising materials, testing fee calculations, and reviewing business continuity plans
    5. Failure to maintain tailored and up-to-date policies, procedures, and records [consider the basis for the enforcement action against Meredith A. Simmons, Esq.]
    6. Failure to ensure that the firm’s policies and procedures are “reasonably designed to prevent violations of the Advisers Act,” with particular focus on portfolio management, marketing, trading practices, disclosure (especially the Form ADV that each adviser must file with the SEC and keep up-to-date), advisory fees and valuations, protection of client privacy, maintaining books and records, protecting client assets, and having required business continuity plan

    SEC OCIE Emphasis on Compliance

    On the same day the November 19 Risk Alert was issued by the OCIE, its Director, Peter Driscoll, gave a speech at the SEC’s annual compliance outreach conference, in which he “instructed” registered investment advisers “to empower Chief Compliance Officers.” Specifically, he called for the CCO’s to have both sufficient authority AND access to the highest levels of firm management. Indeed he suggested that CCO’s themselves be members of senior management and be given, by an employment contract or otherwise, confidence that their employment would not be at risk for raising compliance issues. As one commenter noted, “Proper compliance is … not just a matter of following the [Compliance] Rule but [also] good business.”

    Taking into account the SEC emphasis on compliance, and these recent exhortations from the OCIE, registered investment advisers should promptly AND carefully review their compliance policies and procedures – BEFORE the next OCIE Compliance Inspection. One does not want to receive a deficiency letter from the OCIE finding (in the words of the proverbial handwriting on the wall in Daniel 5:25) “Mene, Mene, Tekel, Upharsin” (Measured, Weighed, AND FOUND WANTING).

    Attorneys from Norris McLaughlin, P.A., may be able to help with that review. If you have any questions about this post or any other related securities or general business law matters, please feel free to contact me at pdhutcheon@norris-law.com.

    Of Counsel
    Peter D. Hutcheon
    Visit Profile

    Related Posts

    When the “Back Door” is Closed: Muni Bond Underwriter Sanctioned “Oh, Baloney!” SEC Sues Father, Son, and Friend for Manipulating the Stock of a New Jersey Deli Who Pays and How Much? Consolidated Audit Trail Funding

    Share

    Tags

    #Broker #Cybersecurity #Investment Advisers #SEC

    Similar Posts

    December 27, 2022
    Delusional Improvement: SEC Proposes Governance Rules for Clearing Agencies
    <em>Delusional Improvement: SEC Proposes Governance Rules for Clearing Agencies</em>
    December 19, 2022
    Cutting Corners: SEC Sues Surgical Implant Company for Disclosure AND Accounting Fraud
    Cutting Corners: SEC Sues Surgical Implant Company for Disclosure AND Accounting Fraud
    September 12, 2022
    Rate the Conflicts: SEC Sanctions Rating Agency and its Principal
    Rate the Conflicts: SEC Sanctions Rating Agency and its Principal

    Helpful links

    • About Us
    • News
    • Services
    • Blogs
    • Attorneys
    • Articles
    • (COVID-19)
    • Events
    • Join our Team
    Connect

    Connect with Us

    • LinkedIn
    • Facebook
    • Twitter
    • Instagram
    • Youtube

    Join our growing team

    We are looking for quality attorneys to help us do more for our clients. At Norris McLaughlin, each attorney has the same opportunity to succeed whether you’re at the beginning of a career or pinnacle of the profession.

    Learn More

    Subscribe to our content

    Receive timely legal information delivered to your inbox

    This field is for validation purposes and should be left unchanged.
    © , Norris McLaughlin, P.A., All Rights Reserved. Attorney Advertising.
    VIEW OUR DISCLAIMER,  TERMS OF USE,  AND PRIVACY POLICY

    We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume you consent to our cookie policy. Learn more