Depite progress since 2014 in developing cybersecurity policies, there are still some critical areas where asset managers fall short with cyber preparedness, according to a new SEC risk alert. One particular shortcoming the SEC sets forth is the failure of some firms to act upon their own codified cybersecurity policies. With expert insight and advice, we detail the new alert’s findings, recommendations and implications. See “What the Financial Industry Should Know to Recognize and Combat Cyber Threats (Part One of Two)” (Jul. 26, 2017); Part Two (Aug. 9, 2017).