A recent SEC Office of Investigations and Examinations cybersecurity risk alert focused on ransomware – a persistent and evolving threat to financial firms, as demonstrated by the recent attack on TCW Investment Management. In a guest article, Simon Eyres, managing director at Drawbridge Partners, discusses the best practices identified by the alert to prevent, detect and mitigate the damage from ransomware attacks, as well as the threat environment in the financial services sector. See our two-part series “How Fund Managers Can Identify and Prepare for Ransomware Threats”: Part One (Apr. 19, 2018); and Part Two (May 3, 2018). For additional insights from Drawbridge, see “Six Ways for Fund Managers to Prepare for the SEC’s Focus on Cybersecurity and Resiliency” (Apr. 30, 2020).