Financial firms improve cyber resilience – but still work to do
Published On: September 18, 2018 |
Financial services firms have made good progress in improving their cyber security defences, with the number of attacks successfully stopped on the rise, a new report has found.
Research by Accenture revealed these companies blocked four out of five cyber attacks (81 per cent) in 2017, up from two-thirds (66 per cent) the previous year. This was despite the number of attempted breaches doubling over the same period.
Chris Thompson, global security and resilience lead for financial services at Accenture Security, said: "Financial services firms are converging to a level of mastery when it comes to the security status quo, including their cyber resilience and response readiness."
However, the study warned there is still more work to be done in order to defend businesses against increasingly sophisticated attacks. In particular, time to detection is one area where there is significant room for improvement.
More than 40 per cent of breaches went undetected for more than a week, while almost one in ten (nine per cent) remained unnoticed for at least a month. Accenture noted that it is essential that breaches are identified and contained as soon as possible – within days or even hours, rather than weeks – so this suggests many enterprises are overconfident about their capabilities.
The report also found that while 83 per cent of executives surveyed agreed that new technologies will be critical in keeping their organisations secure, only two out of five firms are currently investing in them.
Mr Thompson said: "As business technology evolves, so too must cybersecurity. The new technologies that banks and insurers are embracing – including cloud, microservices, application programing interfaces, edge computing and blockchain – will create new security risks, especially as cyber attacks evolve in sophistication."
Financial services firms will need to be particularly aware of these emerging risks, as the industry is becoming increasingly digitised, while developments such as data sharing and open banking change the way in which these organisations do business.
"AI, machine learning and robotic process automation can provide a consistent way to monitor for and combat these threats, but only if firms are willing to invest in them," Mr Thompson continued.
Share This Post, Choose Your Platform!
With over 20 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.