This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our cookie notice ( for more information on the cookies we use and how to delete or block them.
The full functionality of our site is not supported on your browser version, or you may have 'compatibility mode' selected. Please turn off compatibility mode, upgrade your browser to at least Internet Explorer 9, or try using another browser such as Google Chrome or Mozilla Firefox.

CSA releases review of registered firms’ cyber security and social media practices

  • Securities - CSA Image

Oct 19, 2017

On October 19, 2017, the Canadian Securities Administrators (CSA) published CSA Staff Notice 33-321 "Cyber Security and Social Media", which summarizes survey results of registered firms’ cyber security and social media practices, in addition to providing guidance to firms in these areas.

The survey found that more than half (51 per cent) of firms experienced a cyber security incident in 2016. Common incidents reported included phishing (43 per cent), malware incidents (18 per cent) and fraudulent email attempts to transfer funds or securities (15 per cent).

The notice summarizes results from a survey on the cyber security and social media practices of 649 registered firms, which include investment fund managers, portfolio managers and exempt market dealers. Questions were structured to gather relevant information on cyber security policies and plans, social media practices, third-party vendors and the frequency of risk assessments.

Review the press release and Staff Notice on the CSA members' websites.

Correction list for hyphenation

These words serve as exceptions. Once entered, they are only hyphenated at the specified hyphenation points. Each word should be on a separate line.