Who is invited? All ESI Registered Reps, Advisors, Office Managers, Marketing Managers, and Administrative Teams.
What is the goal? Grow your business by teaming up in person to exchange best practices with leading ESI Registered Reps, Advisors, Strategic Partners, Marketing Partners, Technology Partners, ESI’s Business Development Team, and Home Office experts.
Which Partners will be there? Financial Allianz, Fidelity, Brighthouse, Envestnet, AssetMark, 3D/L, Equitable, Jackson, Maple Capital, Touchstone, Transamerica Marketing, Technology, Professional Development FMG, Redtail, White Glove, Broadridge Wealth Data & Analytics, STC, and more
Agenda Mainstage sessions include world class speakers, partner table talks, and interactive peer sessions. Breakout sessions include business growth topics such as successful Registered Rep and Advisors Panel; Differentiating your Practice by Communicating Your Value; and more curated marketing, sales, technology, operations, and practice management sessions.
Cost ESI covers the Conference including sessions, meals, and receptions. Attendees are responsible for travel and hotel costs. The room rate has been subsidized by ESI for an attendee rate of $199.
Summary: New accounts for Brinker Capital Destinations and Destinations ETFh have been suspended for new clients– effective February 1, 2024. This applies to accounts both on ESI Illuminations and Brinker Capital directly. Existing clients may remain in their Brinker accounts, but IARs should bring the concerns discussed below to their clients’ attention, evaluate whether Brinker continues to be appropriate for their clients, and continue to monitor Brinker’s management.
ESI subscribes to due diligence services provided by Envestnet PMC for its third-party managers. Envestnet PMC and their due diligence team have introduced a “Hold” rating for Brinker Capital’s Destinations and Destinations ETFh portfolios. The Hold rating discusses Envestnet’s concern regarding recent turnover of the Destinations portfolio management team. Envestnet’s report cites the departure of a Co-Head of Discretionary Portfolios, Jeff Raupp, in 2021; Leigh Lowman (Senior Portfolio Manager) and Amy Magnotta (Head of Discretionary Portfolios) in 2022; and, more recently, Senior Portfolio Managers Grandt Engelbardt, Michael Hadden and Case Eichenberger in 2023. These departures all follow the merger between Brinker and Orion in September of 2020.
Until further notice, ESI will suspend new Destinations and Destinations ETFh accounts. ESI will continue to monitor Brinker and will update you of any changes it makes. If you have new Destinations accounts in process, please contact ESI Business Development to discuss. The Brinker Core Asset Management Program, (separately managed accounts), will remain open to new accounts.
ESI Advisors with Destinations accounts are encouraged to share this rating downgrade with their Brinker clients to determine if alternative third-party strategist would better serve clients’ needs. Advisors are also encouraged to continue monitoring Brinker’s management and performance. If you have questions about the Hold rating, please contact ESI Business Development, 800-344-7437.
The 4th quarter 2023 alternative mutual fund lists, (approved, restricted and watch lists) have been updated.
Approved and Prohibited Alternative Mutual Funds
The purchase of Alternative Mutual Funds that include inverse and leveraged strategies is not permitted. To assist with what funds may be purchased, there is an Alternative Mutual Fund Available List and a Watch List which is updated quarterly and may be found on the Agent Portal à Products à Investments à Mutual Funds.
The Approved List is a list of approved alternative mutual funds that may be purchased (once training has been completed).
The Watch List is a the list of alternative mutual funds that the Firm is watching to determine if they may become prohibited in the future due to failing consecutive screens, (two consecutive quarters). If you recommend purchases on the list, please be aware that they may no longer be approved to purchase in the future.
The Restricted List is the list of prohibited alternative mutual funds.
BROKERAGE: If an attempt to purchase is ma de in a brokerage account, the purchase will be blocked.
DIRECT: If purchased in a direct, mutual fund, you will be contacted by Compliance after to work with your client to have any new investments directed to a non-alternative mutual fund or to one of the approved alternative mutual funds.
REMOVED FROM APPROVED LIST: If a fund is removed from the Available list (brokerage or direct), Compliance will contact you to let you know that the fund is no longer available for purchase and to work with your client to have any new investments directed to a non-alternative mutual fund or to one of the approved alternative mutual funds.
Training
Prior to purchasing approved alternative mutual funds, you must first complete required training. Please email ESICompliance@nationallife.com to inquire about taking the course. Once you have completed the course, please email your completion certificate to ESITrading@NationalLife.com and this training will be added to your profile.
Questions If you have any questions or concerns regarding the alternative mutual fund lists, please contact ESI at 800-344-7437.
Financial Allianz, Fidelity, Brighthouse, Envestnet, AssetMark, 3D/L, Equitable, Jackson, Maple Capital, Touchstone, Transamerica Marketing, Technology, Professional Development FMG, Redtail, White Glove, Broadridge Wealth Data & Analytics, STC, and more
Session Highlight: Team Up Table Talks Dive into our ‘Team Up Table Talks’ during lunch on Monday 3/18, where the spirit of teamwork meets the power of networking. This interactive session invites you to join forces with strategic partners in a series of engaging table discussions. Each rotation is an opportunity to build alliances and explore how collaborative efforts can lead to mutual success in the financial sector.
ESI Compliance Field Notice 2023-30 December 26, 2023
Cybersecurity Cybersecurity is the practice of protecting networks, systems, hardware and data from digital attacks. It includes protecting sensitive data such as personally identifiable information (“PII”), Protected Health Information (“PHI”), intellectual property, data, and industry information systems from theft and damage attempted by criminals and adversaries.
This Field Notice outlines some important best practices around ESI’s cybersecurity requirements, which align with National Life’s cybersecurity program.For more details on National Life’s cybersecurity program, please review the Security Guidance Manual on the Agent Portal. This document can also be accessed from the “Technology and Security” tab located on the NLG Life and Annuity Compliance portal landing page. For more best practices and guidance, please review Section 5.9.5 of ESI’s Written Supervisory Procedures.
Important Reminders Below is a list of important reminders around security and protection of information:
Cloud Storage: Cloud-based technologies, such as Dropbox, Google Drive, or One Drive are not approved for storing or transferring sensitive ESI corporate or customer data. This includes PII, PHI, or customer or corporate financial data. ESI is unable to validate the security of these mediums nor capture, retain, and reproduce documents on them, since they are external sites. Docupace is the only approved electronic storage medium for ESI.
Email encryption: When sending any ESI related email, you must use your National Life email account. Additionally, you should type “[PRIVATE]” in the subject line of the message to ensure it is encrypted. National Life will then encrypt the email for the outgoing electronic mail that contains PII: ABA routing numbers, credit card numbers, social security numbers, federal tax IDs, and policy numbers. Please see example subject line below:
Phishing emails: Be mindful of suspicious email from unknown senders. Such email may have spelling or grammatical errors or create a sense of urgency. Additionally, never open an email attachment unless it comes from a trusted source. If you are not sure, please forward the email as an attachment to spam@nationallife.com for further investigation.
Scanners must be linked to an NLG email: When scanning documents, the scanner must be linked to an NLG email address for the security of the information being scanned. When utilizing a phone or other device to scan or take a photo of documents, such devices must be encrypted and linked to an NLG email address.
Sharing of passwords is prohibited: Passwords may not be shared for any reason. This includes providing an NRF passwords for an RR’s computer, email, or online system to access client information. In addition, RRs and NRFs are not permitted to obtain passwords from a client to access a client’s account. Only clients may access their own accounts. National Life recommends the use of a password manager to create and secure store unique strong passwords.
Texting: SEC and FINRA Rules require all electronic communications, including text messages, to be captured and archived by the Firm. CellTrust is the only application approved by ESI to use when texting clients. This includes any text relating to securities, investment advisory, insurance and all investment-related activities sent to/received from clients, potential clients, vendors, home office employees, and branch office administrative staff.
Entreda RRs and NRFs are required to have the Entreda Unify System (“Entreda”) software installed on all devices that are used to access ESI systems or that access or store clients’ information. Entreda monitors the security of the device system, including any key security control deficiencies status deficiencies.
Once installed, Entreda calculates a security risk score based on certain criteria including auto-screen lock, WiFi, password, and encryption settings, among other factors. A device must maintain a passing score of 660 or above to be compliant. Failure to install Entreda or maintain a passing score of 660 will prevent users from accessing the agent portal. Please refer to FN 2021-19 Entreda Unify Systems for more details.
If you no longer utilize a device for business purposes, all ESI data must be permanently removed from that device. Once removed, please contact Stephen Page (spage1@nationallife.com) to confirm and allow him to remove the device from Entreda reporting.
Hardware Hardware that stores Confidential or Sensitive information, which is no longer needed or has reached “end of life,” must be securely deleted and such data deemed unreadable and non‐recoverable before redistribution, reuse, or disposal following NLG hardware “end of life” guidelines. Effective deletion and destruction must be evidenced, and if applicable, certification must be obtained and properly recorded. Any destruction of Confidential or Sensitive Information must be conducted in accordance with the applicable requirements of NLG’s Information Classification Policy, the Records Management Policy, and other relevant NLG policies and procedures.
Anti-virus and Encryption Anti-Virus is monitored in the field through Entreda. Everyone associated with ESI must have anti-virus software on all computers that access or store clients’ PII. In addition, all portable devices and external media (e.g. zip drive, flash drive, mobile phone, laptop, disks) that access or store clients’ PII must be encrypted. Backup drives should be encrypted to prevent unauthorized access in the event they are stolen or lost.
Anti-virus/anti-malware software vendors that are currently compliant with Entreda:
AVAST! Software
AVG Technologies
BitDefender
Checkpoint
Crowdstrike Falcon
Fortinet
Cylance Protect
ESET
Kaspersky
Malwarebytes Premium
McAfee
Windows Defender
Panda Security
SentinelOne
Symantec Corp.
Norton360
Sophos
Trend Micro
Vipre Anti-Virus
Webroot
Zone Alarm
Encryption vendors that are currently compliant with Entreda:
Microsoft BitLocker Encryption
McAfee
Sophos
Symantec (full disk encryption only)
Branch Cybersecurity Policy
It is recommended that each branch have a documented cybersecurity policy. Here are some items to consider including in the policy:
What to do if there is a cybersecurity-related issue
To report an incident, please contact your supervisor. In coordination with your supervisor, please contact ESI Compliance by phone (800-344-7437) or email (esicompliance@nationallife.com) to report. Cybersecurity-related issues may include, but are not limited to:
email account compromise
National Life password compromise
computer hacking (for example: unauthorized access or malware infection)
computer/device theft or loss
other situations, whether caused by humans or technology, that resulted or could result, in the exposure of confidential information to unauthorized parties.
Vetting third party IT providers or resources
The ESI Confidentiality Agreement is required whenever a third-party or outside service provider may have access to ESI’s confidential client information or records. Examples of third-party services may include, but are not limited to, shredding services, document storage facilities, office cleaning services, or IT service providers.
When using outside third-party IT resources, in addition to obtaining a confidentiality agreement, the vendor should be adequately assessed to ensure that they have effective security practices. For more best practices related to vendor due diligence, please review the Field Notice 2023-27.
Safeguarding Customer Records and Information
It is recommended that you create and maintain a technology inventory. This should include computers, laptops, scanners, tablets, phones, printers, etc. In case an issue arises, this inventory will help you understand what asset has gone missing or has been impacted and who it belonged to. For more information, please refer to NLG’s
Minimum-Security Standards which are found on page 53 of the NLG Life & Annuity Compliance Manual.
Phishing and Smishing (SMS text message phishing) continue to occur commonly. It is important that all RRs and NRFs understand how to spot phishing emails. They must also understand that text messages impersonating executives or other VIPs asking for gift cards is a commonly used lure.
Questions
If you have any cybersecurity-related questions, please contact your supervisor.
The Florida Department of Financial Services previously had special paperwork requirements for annuity business in Florida. Forms DFS-H1-1980 and DFS-H1-1981 were required, however they have been discontinued effective 01/01/2024. ESI has removed these forms from Docupace since they are no longer required.
Please call Direct Business Suitability at 800-344-7437 with questions.
