I’m thinking things like network security, website security, end user security, requiring multi factor authentication, educating customers on security best practices. Cold storage. Distributed client funds storage. Multiple approvals to do things like place trades, perform withdrawals and deposits, transfers, etc. All those things that make getting hacked or client funds stolen harder.