Protecting all the assets of our clients and safeguarding their proprietary and confidential information is a fundamental responsibility of every Westwood employee.
Our chief operating officer is responsible for reviewing, maintaining and enforcing all cybersecurity policies and procedures to ensure Westwood’s overall cybersecurity goals and objectives while ensuring compliance with applicable federal and state laws and regulations.
The chief operating officer oversees the selection and retention of third-party service providers, taking reasonable steps to select those capable of maintaining appropriate safeguards for the data at issue, and contractually requires service providers to implement and maintain appropriate safeguards.
Our designated Risk Committee has the responsibility for overseeing our cybersecurity practices.
To best protect our clients and the firm, all suspicious activity recognized or uncovered by personnel is promptly reported to the chief compliance operating officer, general counsel and chief compliance officer, anti money laundering compliance officer and/or other designated persons. Employees are expected to immediately notify their supervisor and/or Human Resources and IT to report a lost or stolen laptop, mobile device and/or flash drive.
Westwood provides training to employees regarding information security risks and responsibilities. Such training is provided to all new employees as part of their onboarding process and is provided to all employees annually.
Additional training and/or written guidance also may be provided to employees in response to relevant cyberattacks.