Big Data Fintech News Risk Management

Financial Services Companies Lack Trusted Data to Make Security Decisions Reports Panaseer

Data accuracy and request overload cited as key challenges in Panaseer's 2020 GRC Peer Report

Manual processes, lack of trust in data and request overload fuel security metrics and measurement mayhem, according to Panaseer’s 2020 Security Metrics Report

Senior security leaders within financial services companies are challenged by a lack of trusted data to make effective security decisions and reduce their risk from cyber threats, according to Panaseer’s 2020 Financial Services Security Metrics Report. Results from a global external survey of over 400 security leaders that work in large financial services companies reveal concerns on security measurement and metrics that include data confidence, manual processes, resource wastage and request overload.

Read More: Executives Explore Disruptions in Fraud Trends, Securing Online Channels and Mobility Payments in Transit

The results demonstrate myriad issues with the processes, people and technologies required to have a full understanding of the organisations cyber posture and the preventative measures required to stop a security control failure from becoming a security incident. The vast majority (96.77%) of respondents claimed they use metrics to measure their cyber posture, with the primary use for security metrics being risk management (41.69%), demonstrating success of security initiatives (28.04%), supporting security investment business cases (19.11%) and Board/ executive reporting (10.17%).

Over a third (36.72%) of security leaders said that their biggest challenge is ‘trust in the data’ when creating metrics to measure and report on risk, followed by the resources required to produce them (21.34%), the frequency of requests (14.64%) and confusion over knowing what metric to use (15.3%). Less than half of respondents (47.75%) could claim to be ‘very confident’ that they are using the right security metrics to measure cyber risk.

Request overload and resource requirements are cited as key issues fueling the metrics mayhem. Auditors demand data most frequently at every 10.4 days per month, followed by the regulators at every 11.4 days. On average, risk teams request updated metrics every 16 days. This means that virtually every day there is someone in the security team working on metrics for a stakeholder group.

Read More: Former U.S. Secretary of Commerce, Penny Pritzker, Doubles Down on Payments Infrastructure Pioneer Finix

Related posts

CSI Teams Up with Bank of the West to Introduce V-PAYO — An Integrated Payables Platform Featuring Virtual Card Payment Optimization

Fintech News Desk

FNCB Recognized as One of the Top Community Banks in the United States

Fintech News Desk

Trustology, GCEX and Bosonic Partner on Streamlined, Risk-Free Digital Asset Trading

Fintech News Desk
1