Technology
Financial Groups Give Cyber Threats High Priority; Majority Report Breaches – Study
A study based on findings in Europe, Asia and the Americas says that while financial organisations increasingly take time and trouble to foil cyberthreats, the vast majority have also reported some sort of breach.
A growing number of financial services senior figures take cybersecurity seriously, a new report finds, while noting that 93 per cent of 150 information technology and IT decision-makers in such firms have reported a breach of some kind.
The findings, which come from SailPoint – a US-based identity security provider – are based on the views of IT-related figures in the US, Canada, the UK, Australia, Brazil, France, Germany and Japan. The respondents, who were polled in August and September 2022, were from organisations with 1,000 or more staff.
All respondents said identity security is either a relatively important, critical, or number one investment priority within the organisation. Furthermore, 56 per cent of those surveyed said their organisation has fully implemented an identity security programme and 29 per cent said their programme has been in place for at least two years.
“The financial services industry deals with large amounts of sensitive data and personal identifiable information, making it a prime target for attackers,” Matt Mills, president of Worldwide Field Operations for SailPoint, said. “This makes strong identity security a necessity. The fact that over half of the surveyed financial services firms have fully implemented an identity security solution is a step in the right direction, but it’s clear that there is still room for improvement. Breaches have long been a fact of life in the financial sector, but implementing a strong identity security solution greatly reduces the potential damage that an attack can incur.”
Among the challenges highlighted, 91 per cent of respondents said they have experienced difficulties when it comes to adopting identity security, with the most common being flexibility in integration (38 per cent), high configurability (35 per cent), or being too complicated to implement (32 per cent). In addition, nearly all respondents (97 per cent) said that their organisation’s ability to detect and prevent identity-related security breaches needed improvement.
Among other findings, 72 per cent of respondents said the number of identity-related breaches had increased over the last two years in the US, rising to 80 per cent for those in the rest of the world.
The report quoted an unnamed senior director of security operations in the US as saying: “Banks are one of the juiciest targets, so the criminals are going to give it more resources…it is a lot easier to steal something over a computer than robbing a bank with a gun.”
SailPoint is based in Austin, Texas.