Despite heightened attention and unprecedented levels of security investment, the number of cyber incidents — and their associated costs — continues to rise
Despite heightened attention and unprecedented levels of security investment, the number of cyber incidents — and their associated costs — continues to rise. The concern typically revolves around the growing sophistication of malicious hackers and other adversaries, and whether being secure is even possible in today’s rapidly evolving landscape of cyber-attacks. Two important questions as to the underlying reasons for this trend and how organisations can actually reverse it to start winning the cyber risk battle need to be addressed.
The reasons
The first – the underlying reason - has a lot to do with your organisation itself. It is not just about the sophistication of the external actors, but how by increasing your own digital reach adds layers of complexity, volatility, and dependence on infrastructure that is not fully within your control. Your efforts to grow, serve, differentiate and streamline, introduce new gaps and opportunities that attackers will try to exploit. When you consider this inherent link between business performance, innovation and cyber risk, it becomes clear that protecting everything — while perhaps not impossible would be economically impractical and would be likely to impede some of your most important strategic initiatives.
The second cyber incidents occur every organisation must realistically assess its changing risk profile and determine what levels and types of cyber risk are acceptable. So understanding cyber risk starts with specifics. By identifying the specific threats facing your organisation enables you to better prioritise what to secure, determine how best to monitor it, and decide what types of incidents to prepare for.
Global banking cyber threats
Globally there are some recent generic, typical cyber threats that include:
In the following chart we call out the very high, and the high, moderate and low areas of concern around cyber threats - the actors and their impacts in the banking sector.
In a world where it is not feasible to be 100 percent secure, it is of course critical to protect your most important assets. But you must focus equal, and in some cases greater, effort on gaining more insight into threats, and respond to reduce their impact.
Through an ongoing program to become secure, vigilant, and resilient, you can be more confident in your ability to reap the value of your strategic investments.