Officials at the Securities and Exchange Commission have ushered in an era of more transparency, parting the curtain for advisory firms on what they'll be scrutinizing as well as which rulemakings are priorities this year.
SEC Chairwoman Mary Jo White and three of the agency's division directors laid out over the past month where they will focus their energies in 2014.
Issues that are top of mind for the Office of Compliance Inspections and Examinations (OCIE), as well as for the enforcement and investment management divisions, include: the custody rule; insider trading; examining firms' policies on cybersecurity; dually registered advisors' or BDs' shifting of client accounts from brokerage to advisory accounts; failure to correct compliance deficiencies; conflicts of interest; private funds; and cherry picking.
In a January speech titled "The SEC in 2014," White also listed the technology initiatives being used by the agency's exam team as well as the rules that the securities regulator hopes to finalize this year. The SEC chairwoman said that a "critical priority" to complete in the "relatively near term" is money market fund reform, as well as final implementation of crowdfunding rules.
As it stands now, the commission is considering two "significant proposals" for additional reform that were put out for comment last June: a floating net asset value for prime institutional money market funds—the type of fund that experienced problems during the financial crisis—and a proposal to require money market funds under certain circumstances to impose a liquidity fee and permit the imposition of redemption gates.
On the technology front, White highlighted the newly developed National Exam Analytics Tool (NEAT), which enables examiners to access and systematically analyze "massive amounts of trading data from firms in a fraction of the time it has taken in years past."
White said that in one recent exam, an SEC team used NEAT to "analyze in 36 hours literally 17 million transactions executed by one investment advisor."
In 2014, SEC examiners, White said, will be using the NEAT analytics to "identify signs of not only possible insider trading, but also front running, window dressing, improper allocations of investment opportunities and other kinds of misconduct."
At the SEC's Compliance Outreach Program National Seminar held at SEC headquarters in Washington in late January, Andrew Bowden, associate director of the National Investment Adviser/Investment Company Examination Program within OCIE, Norm Champ, director of the Division of Investment Management, and Andrew Ceresney, director of the SEC's Enforcement Division, laid out for attendees—mainly compliance officers—their priorities for 2014, including some which are spillover issues from last year.
OCIE: Custody, IRA Rollovers, Alt Mutual Funds
Bowden noted that OCIE's focus last year on making sure advisors comply with the custody rule will also be a focus this year. The "No. 1 [exam] item was custody and safekeeping of assets in 2013," Bowden said. "I hope nobody missed this message coming out in 2013," he said, because it will continue in 2014. "We're going to closely assess your compliance with appropriate reporting of client assets."
Bowden also mentioned OCIE scrutiny of qualified plan rollovers this year, as well as alternative mutual funds—which he said are the "largest growing" new fund sector.
Jane Jarcho, national associate director of OCIE's National Exam Program, noted on a separate panel that OCIE's exams will include assessing firms' cybersecurity policies. Examiners will be looking at RIA resources going into information security, policies on cybersecurity risk, what policies are in place to prevent and respond to cyberattacks, lost information and identity theft. Jarcho said that examiners will also ask about internal and external cyberattacks that may have occurred at advisory firms, and will look at firms' policies on IT training, vendor access and vendor due diligence, she said.
David Grim, deputy director of the Investment Management division, added, "Cybersecurity is a big issue that people are worried about—take a look at the policies and procedures you have around this issue and make sure they are current."
