Connect with us

Hi, what are you looking for?



Investment Firm Combines Smarsh and Actiance to Solve FinServ Compliance Issues

Two major financial services and regulated industry compliance firms, Smarsh and Actiance, have combined to better serve industry’s increasingly complex requirements around communications, archiving and discovery regulations. Actiance has been acquired by K1 Investment Management, and combined with Smarsh.

Two major financial services and regulated industry compliance firms, Smarsh and Actiance, have combined to better serve industry’s increasingly complex requirements around communications, archiving and discovery regulations. Actiance has been acquired by K1 Investment Management, and combined with Smarsh.

“The Financial Services sector is undergoing rapid change,” explains Neil Malik, Managing Partner at K1; “legacy technologies are no longer sufficient to comply with SEC and FINRA standards, let alone MiFID II. This combination of capabilities from Actiance and Smarsh provides the industry with a means to get ahead — and stay ahead — of compliance trends, while introducing the latest communications technologies to increase efficiency and effectiveness in the modern enterprise.”

Smarsh provides cloud-based archiving and compliance solutions for companies in regulated and litigious industries. It provides a unified compliance and e-discovery workflow across a range of digital communications systems, including emails, public and enterprise social media, websites, and instant and mobile messaging. Actiance  is a major provider of communications compliance, archiving, and analytics — providing compliance across a broad set of communications channels with insights on what’s being captured.

Before the acquisition, the two firms could be considered competitors, and there is overlap in their solutions. Together, however, they provide a more complete compliance service from a single provider. “Together, Actiance and Smarsh uniquely enable global customers across industries to capture, record, store, and analyze over 100 content types,” said Kailash Ambwani, CEO of Actiance. “Together we will enhance our combined sales and distribution capabilities, offer our customers additional resources and services, and accelerate our product development.”

“Perhaps most importantly,” added Stephen Marsh, founder, chairman and CEO of Smarsh, “organizations with legacy, on-premise capture and archiving solutions can make the overdue transition to upgraded and more modern solutions. All of this is now possible through a single provider.”

Compliance is an increasingly important part of the risk management portfolio. New regulations are affecting all industries; but none more so than financial services. Coupled with the growth of regulations is an increasingly active regulator. The annual Eversheds Sutherland analysis of Financial Industry Regulatory Authority (FINRA) cases shows that FINRA fines on FinServ firms increased by around 435% in 2016.

Two particular areas of FINRA activity are relevant to the newly combined suppliers: ‘books and records’ actions, and actions against compliance officers. Books and records fines increased by 423%, “driven largely by enforcement actions against 12 firms for, among other things, failing to preserve records in “write once, read many” (WORM) format. FINRA fined these firms a total of $14.4 million.”

Advertisement. Scroll to continue reading.

FINRA also cracked down on individual compliance officers. In one case, a firm’s former compliance officer was fined $25,000 and suspended for three months. Eversheds Sutherland (US) partner Brian Rubin commented, “These cases are a signal to compliance officers that they are in FINRA’s crosshairs. They ought to take heed and try to ensure that adequate compliance-related policies and procedures are in place.”

Few details of the new Smarsh/Actiance arrangement have been made public. It is not described as a merger, and there is no current indication of a new name for the combined firms. The statement merely says, “Together, the combined company offers deployment options (cloud, dedicated, on-premise, and hybrid) to meet the needs of its customers… It will continue to support both company’s product lines while providing customers greater value and flexibility. Near-term priorities include more investment in product capabilities, increased flexibility in deployment options, accelerated expansion in Europe and development of a joint channel partner program.”

Existing operations of both Smarsh and Actiance will be maintained in Oregon, California, New York, Massachusetts, Georgia, North Carolina, Canada, India, and the United Kingdom. Terms of the deal were not disclosed.

In September, K1 Investment Management acquired SecureAuth for $225 million, with plans to merge it with Core Security, a firm focused on vulnerability discovery, identity governance, and threat management. K1 had previously acquired Damballa in a deal reported to be under $10 million. 

Related: Financial Firms Struggle on Compliance for non-Email Communications 

Related: eDiscovery – An Enterprise Issue That Can’t be Ignored 

Written By

Kevin Townsend is a Senior Contributor at SecurityWeek. He has been writing about high tech issues since before the birth of Microsoft. For the last 15 years he has specialized in information security; and has had many thousands of articles published in dozens of different magazines – from The Times and the Financial Times to current and long-gone computer magazines.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Microsoft on Tuesday pushed a major Windows update to address a security feature bypass already exploited in global ransomware attacks.The operating system update, released...

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...


Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...