Tag Archive: investment


Protecting Your Clients’ Security

Filed under: Best Practices, Client Communication, Investment Operations, SecurityLeave a comment
April 5, 2013

iStock_000009182001XSmallIn a day where security threats are constantly evolving and your business is reponsible for keeping confidential information secure, your clients’ computer systems may seem an unlikely place to prod your nose, but unfortunately, an increasing number of security threats are originating from the clients of investment advisors.

One recurring example that we have witnessed over the past year, is the hacking of email accounts.  In this scenario, your client’s email account with Google gets hacked because their password is “patriots1” or perhaps their PC has been infected with a keylogger virus.  In any event, a hacker somehow discovers your client’s password and now has access to their historic email records.

In the past, hackers might have been satisfied to use that account to SPAM everyone on earth, but today’s hackers are more sophisticated.  Apparently, they’ll actually take the time to read through your client’s emails in search of financially sensitive information.  Based on the content of previous communications with your firm, they can compose a similar looking email to one that the client might have sent in the past to ask your staff about total holdings or even request a check.

Here are some tips your clients should follow to keep their email and other accounts secure:

  1. Don’t enter your passwords in kiosks and other systems available to the public.
  2. When you get the option to store the password for various accounts and websites on your PC, don’t do it.
  3. Never send your passwords in an email.
  4. Use encrypted email connections.
  5. Institute complex passwords.  I know it’s a pain, but so is having your identity stolen.
  6. Don’t use the same passwords for multiple accounts.  Yes, this is a pain too, but there are some programs like eWallet that can help.
  7. Run up-to-date versions of security software that include protection for spyware, malware and viruses.  Don’t ignore messages from your Antivirus program.
  8. Stay up-to-date on operating system and application security patches.
  9. Be cautious of which sites you browse.  A program like openDNS can help you keep your computers clean by limiting access to potentially harmful websites.  The home version of OpenDNS is free.  You can find it at www.opendns.org.  Antivirus programs like AVG and Symantec can filter websites too, but do it with less specific controls.

Here is what your clients should to do if they do get hacked:

  1. Contact a computer professional or the email provider to help determine how you got hacked.
  2. Alert your investment advisor and other vendor relationships that hackers could try to take advantage of.
  3. Resolve any issues that may have led to the hack, such as: simple passwords, malware, spyware, and viruses.
  4. Change your passwords and any hints from a computer system, smart phone or the original system once the threats have been removed on the following: the hacked site, any other sites where you used the same username and password and any sites whose information you stored in the hacked account.
  5. If you determine that you have been a victim of spyware or malware, you will need to change all your passwords for your online accounts and follow the procedures for recovering from identity theft.
  6. If you cannot follow any of these steps because your account credentials have been changed, you will need to contact the company providing that account in order to regain control of your account.
  7. Implement better security provisions going forward.

There is only so much you can do to protect your clients.  Ensuring that email communications are secure should be at the top of the list. Your firm can implement a product like Zixmail to encrypt selected emails, but at the point where your client’s computer system has been compromised, this may only provide an additional deterrent, and should not be seen as the solution to the problem.

The best course of action is a combination of staying vigilant, educating your clients, implementing best-practice email security, and instituting additional internal controls aimed at how your firm handles client communications, such as balance and check requests.

About the Author: Kevin Shea is President of InfoSystems Integrated, Inc. (ISI); ISI provides a wide variety of outsourced IT solutions to investment advisors nationwide.

For details, please visit isitc.com, contact Kevin Shea via phone at 617-720-3400 x202 or e-mail at kshea@isitc.com.

Tags: , , , , , , , ,
Comment

In 2013, Certain Client Reports are Bound to Impress

Filed under: APX, Axys, Best Practices, Portfolio Management SystemsLeave a comment
December 30, 2012

In my role over the years as a designer and developer of client reporting packages for dozens of investment advisors, I typically work with decision-makers to facilitate the creation of new client presentations. Many of my clients already know what they want and just need help making it happen.

Though I have an excellent understanding of what is important to most investors and their clients, my opinion is seldom solicited. I speak up when an issue demands it, but most of the time I defer to advisors, listen, and do my best to create what my clients (investment managers) want. In many cases, the bulk of the project is spent on individual report exhibits with little emphasis on the way reports are organized and presented to clients.

I have worked with firms who have wanted to do the bare minimum for their clients (appraisal, and invoice) as well as clients that go above and beyond their duty to report. However, even those with the best reporting intentions can err by including a level of complexity and detail that will not benefit their clients.

On occasion, I am lucky enough to work with investment professionals who are modern thinkers and savvy marketers. The combination of these important characteristics leads to engaging projects and sophisticated report packages. These advisors apparently understand what their clients want to see, and are determined to make the desired reports a reality.

Instead of reporting only what is required, these advisors are trying to exceed the reporting expectations of their clients, and in doing so they engender trust. Their reports are comprehensive and transparent. As such, they have the possibility of highlighting poor performance, but that is a risk that needs to be taken by most advisors. The significance of disclosing this level of information is recognized by investors’ clients and should improve client communications.

In terms of presentation, reports should be bound, with a cover and/or table of contents and well-organized. When a client opens the report up, the most important things are first, and less important details follow. For example, there is a hierarchy to the way the reports are organized in the package such that the relationship is reported first and individual account reports later.  You can view a full report sample illustrating this approach here. In this specific example, the physical report package opens to display pages two and three of the PDF document, which are a relationship summary. The pages that follow provide account-level information.

Reports are typically bound electronically (i.e. PDFs) for those who deliver reports through portals or encrypted email, but firms send most their reports out on paper due to low adoption rates. Paper copies should look professional, and there are cost-efficient options to make this possible whether it is done through printing report packages on 11×17 stock with a saddle stitch or via manual binding of reports after they have been printed. Some of the manual binding options are fairly quick, but shops with hundreds or thousands of reports should not bind reports manually.

Another key to producing impressive report packages is the one-page summary, which allows a client to look at a single page if that is all they want to see. Usually, it is an exhibit that shows them where their investments are, how much they are worth, how they have grown, and how they have performed over various time periods. One-page summaries are also produced to provide information about specific asset types and performance. The idea is to create an executive summary. Clients really want a concise overview of their investments, and rarely look at all the other details that get sent to them on a quarterly basis.

How will you know if your reports have made an impression?

You will hear it from your clients. Even hard-to-please clients should appreciate these types of report improvements. So get to work now, and your new report packages could be ready for next quarter.

About the Author: Kevin Shea is President of InfoSystems Integrated, Inc. (ISI); ISI provides a wide variety of outsourced IT solutions to investment advisors nationwide.

For details, please visit isitc.com, contact Kevin Shea via phone at 617-720-3400 x202 or e-mail at kshea@isitc.com.

Tags: , , , , ,
Comment