NSCP REGULATORY ADVISORY COMMITTEE MEMBER SURVEY

SEC RISK ALERTS

NSCP’s Regulatory Advisory Committee conducted a Member Survey to collect data as to what SEC regulations members felt they need more guidance on and would like to have the SEC address in a Risk Alert.  The survey also asked what specific information members would like to see addressed or provided.

The survey was conducted during the period June 15, 2023 – July 7, 2023. There were 135 respondents to the survey.

Below is a summary of NSCP members responses.

Question 1:  Which specific rules do you need more guidance and would like the SEC to address in a Risk Alert?

Results by SEC Regulation

Results by Number of Responses

Question 2:   Within a Risk Alert, what specific information would you like to see addressed or provided?

  1. Best practices based on SEC staff observation (9).

  2. Clarification of regulations and guidance as to how firms are expected to comply with the rules (2).

  3. Deficiencies seen during exams.

  4. Detailed examples of violation/non-violation.

  5. Details of what a firm / registrant should do to comply.

  6. Expand best practices - give firms guidance on what they should do and be specific.

  7. How common deficiencies can be avoided and suggestions for improvement. (2)

  8. How a firm can implement a rule especially, new rules.

  9. I would like to see Risk Alerts sent out via email to SEC registrants.

  10. Implementation expectations/suggestions and related regulatory examination procedures.

  11. It would be great to see an enumeration of procedures firms should be employing. Policies are straightforward, but the actual practices are what most people don't find clear.

  12. It's always helpful to have examples.

  13. More clarity with the rule's application and specific deficiencies noted by the examination staff.

  14. More concrete examples.

  15. More definition around specific exam interests.

  16. Provide specific examples of dos and don'ts

  17. I recommend that the SEC deliver risk alerts directly to registrants.

  18. Not a regurgitation of the rule, rather guidance and samples. Also, the SEC should provide realistic best practices.

  19. Observations from exams.

  20. Compliance oversight responsibilities.

  21. Prefer not just a regurgitation of the rule and more practical guidance. Older alerts gave more concrete guidance.

  22. Proposed practices and practical suggestions on how to comply.

  23. Samples or specific examples.

  24. Similar to a 'no-action' letter, what can an IA do to ensure they are in compliance with the rule.

  25. Specific deficiencies and corrective actions plus additional testing procedures expected by the SEC.

  26. Specific details/examples with practical application.

  27. Specific examples the SEC has seen that have been both 'satisfactory' to comply with rules as well as specific examples the SEC has seen in which firms did not satisfactorily comply with a rule(s).

  28. Summary of rule requirements.

  29. What the SEC expects firms to do to address deficiencies.

  30. What to expect, best practices and maybe even some examples of what they would like to see.