We believe that the SEC and FINRA make cybersecurity regulation difficult to understand.
The situation leaves firms vulnerable and prone to attacks.
We are here to change that.
MTradecraft conducts real-world based cyber attacks against our clients to uncover their vulnerabilities, teach them how to defend themselves, and produces the required compliance documentation.
Attacks or Audits:
Our clients are always prepared.
We support over
firms with our Tradecraft:
SEC and FINRA Compliance Documentation
Tailored Access Investment Research
I am Brian Hahn and I founded the firm in 2009. I have been in the investment industry for over 20 years with experience as a:
COO|CCO of a SEC Registered Investment Advisor
Head Trader and Operations Manager for a SEC Registered Hedge Fund.
CS Associate at Ray Dalio's Bridgewater Associates.
Co-Founder of two investment management firms (a RIA and hedge fund)
I have experience designing every aspect of a firm's IT operations, compliance manuals, and cybersecurity infrastructure.
Unlike most firms, I do not sell ongoing services or products, nor am I affiliated with outside IT vendors. That means you will receive unbiased advice that is focused on protecting your network and allowing you to easily respond to regulatory examinations.
I live and breathe cybersecurity, privacy tech, and investment management operations and I am dedicated to the tradecraft of helping my clients protect their most sensitive data and client relationships.
Brian Hahn | Founder
MTradecraft supports over 180 clients worldwide.
We serve all financial institutions, with focused expertise in the RIA, broker-dealer, hedge fund, and family office space.
A Practical Guide to Cybersecurity for RIAs and Hedge Funds
Back in January 2020, the SEC's OCIE office released their Cybersecurity Observations paper. As per usual, it was filled will all the same copy-and-paste bullshit that we have all been accustomed to reading when the SEC starts talking cybersecurity. The SEC can't protect their own network, so why should we expect any useful tips from them on how to protect your firm’s networks? In this webinar, I will dissect their report, piece by piece, and demonstrate what you need to be doing to meet your compliance obligations and defend against attackers. Warning: This will be technical, so bring your geekiest employee.