In 2014, the Securities and Exchange Commission’s Office of Compliance Inspections and Examinations launched a robust cyber sweep exam program targeting more than fifty financial services organizations, to address the growing concern of Infosec risk. The Federal Trade Commission has also mandated substantial audit requirements as a condition of settlement for the lack of information security.