Two Sigma Hit with $90M SEC Settlement Over Faulty Algorithmic Oversight
When Quant Hedge Funds Fail the Fiduciary Test on AI Models
Quantitative hedge fund Two Sigma—a $60 billion powerhouse—has quietly agreed to a $90 million SEC settlement after admitting it failed to manage major vulnerabilities in its algorithmic investment models. This shines a light on a growing frontier: how oversight, not alpha, can trigger enforcement. en.wikipedia.org+4hedgefundlawblog.com+4businessinsider.com+4vedderprice.com+1reuters.com+1
🧩 What Happened?
Beginning in March 2019, Two Sigma knew certain trading models had unauthorized “read/write” access, meaning any employee—or potentially an outside actor—could tweak the models without review. vedderprice.com+1reuters.com+1
A modeler reportedly made intentional changes, driving underperformance of ~$165M in some accounts and outperformance of $400M+ in others. vedderprice.com
But the firm didn’t step in until October 2023—coinciding with an SEC examination. That’s a 4½-year gap. pbwt.com+8vedderprice.com+8hedgefundlawblog.com+8
In response, Two Sigma self-reported, refunded $165M to impacted clients, and struck the settlement—without admitting or denying wrongdoing. reuters.com+1vedderprice.com+1
⚖️ Legal Analysis
1. Breach of Fiduciary Duty (Advisers Act § 206)
The SEC found Two Sigma’s failure to address internal weaknesses constituted a deficiency in “reasonable care, skill, and caution”—a textbook fiduciary violation under Sec. 206(2). vedderprice.com
2. Broken Compliance Regime (§ 206(4) & Rule 206(4)-7)
Regulations require firms to maintain written policies and procedures robust enough to prevent such events. Two Sigma’s system fell short—especially regarding supervision of a rogue modeler.
3. Supervision Failure (§ 203(e)(6))
The unchanged database access over years and the modeler’s unchecked modifications show a clear failure to reasonably supervise employees—also actionable under the Advisers Act. vedderprice.com
4. Whistleblower Concern Violation (Rule 21F-17(a))
The fund allegedly attempted to hinder internal whistleblowers—another red flag attracting regulatory action. pbwt.com+13vedderprice.com+13en.wikipedia.org+13
👁️🗨️ Why Hedge Funds Should Pay Attention
Algorithmic edge ≠ compliance cover. Even sophisticated quant shops must balance innovation with fiduciary duties.
Internal vulnerabilities can cost hundreds of millions, not just via losses, but via enforcement penalties.
Whistleblower integrity is a must—interfering with internal reporting can multiply overall risk.
🔮 What’s Next
MoveWhat to WatchSEC publicationWill they release a formal order outlining expectations for quant model governance?Industry ripple effectExpect other algorithm-heavy funds to audit access rights and compliance protocols.CAIA/FINRA responseWill industry associations push for updated quant governance standards?Investor demandExpect LPs to demand transparency and audit rights around model vetting and oversight.
🏁 Final Word
Two Sigma’s settlement sets a precedent: model sophistication isn’t enough—governance matters. For quants and their legal teams, this isn't just a caution; it's a compliance roadmap.