When it comes to managing cybersecurity risk, investment advisers are in a tough position. As the frequency and variety of cybersecurity risks mount, IT budgets and staffing do not always follow suit. Compliance and IT professionals are often asked to do more with less, which can seem overwhelming given an ever-expanding list of regulatory and business requirements as well as increased scrutiny of firms’ cybersecurity controls by third parties.