About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

Is Information or Cyber Security finally becoming a strategic board level issue?

Subscribe to our newsletter

By Steve Daniels, Strategic Business Advisor – Cyber Security, CGI

It’s my opinion that cyber security has for too long been seen by business leaders as a tactical activity left to a breed of specialists. Certainly, CGI research entitled ‘Cyber security in the boardroom: UK plc at risk’ found that 28% of respondents said this had been the case until recently.  This seems comparable to other important areas of business enabling activity such as data protection, consent management and data management which have typically received low levels of management attention.

Fortunately, it seems that there is growing evidence of board level executives waking up to the threat to their business cyber security poses. Some 38% of those surveyed believe they will experience a cyber security breach in the next 12 months. This is perhaps prompted by high profile cyber security breaches reported in the media and their organisations’ dependence on IT services.

With the direct costs of such data breaches estimated at over £1m a year by survey respondents and the new stiffer penalties for breaches on Board members under the finance sector’s Senior Managers Regime and imminent General Data Protection Regulation (GDPR) and Network Information Security Directive (NISD), the stakes are high. The breaches reported publicly and these new requirements have led to an 81% increase in cyber security awareness amongst those that CGI surveyed.

Whilst Boards are now recognising the problem, the business response still seems to be lagging behind. Spend is increasing by 11% on average and 15% in retail and financial services but that is against a low base of an average of 9% of total IT spend. It could be seen that this response still seems tactical rather than actively governed as defined in standard BS13500, and concerted and programmatic to build in the organisational resilience as defined in standard BS65000.

At the heart of an organisation are its data assets, which GDPR and NISD seek to protect through what will be a step change in cyber security maturity. This may absorb all of the increased cyber security spend being promised, and more. It’s surely time for all the data and cyber security specialists to come together both to advise their Boards, to execute the Board’s direction effectively and underpin the Board’s accountability for this critical concern.

Just how far is your organisation along this path and should it be satisfied with where it is?

Find out more about the connection between cyber and data governance which will be moderated by Angela Wilbraham at the next EDMworks Practitioner Network at Kings Cross on 2nd June. Click here to for further information and to register.

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: Best practices for buy-side data management across structured and unstructured data

Data management is central to asset management, but it can also be a challenge as firms face increased volumes of data, data complexity and the need to consolidate structured and unstructured data to gain valuable insights, improve decision-making, step up customer acquisition and compliance, and ultimately, gain competitive advantage in a market characterised by tight...

BLOG

QuantCube Tackles ESG with Macroeconomic Data

Macroeconomic research specialist QuantCube Technology is targeting environmental, social, and governance (ESG) compliance with a new asset-mapping database aimed at helping financial institutions monitor the risk exposure of their physical assets. The tool focuses on the data gap faced by banks, insurance companies, asset managers, and corporates in assessing (ESG) risks at a granular level,...

EVENT

AI in Capital Markets Summit New York

The AI in Capital Markets Summit will explore current and emerging trends in AI, the potential of Generative AI and LLMs and how AI can be applied for efficiencies and business value across a number of use cases, in the front and back office of financial institutions. The agenda will explore the risks and challenges of adopting AI and the foundational technologies and data management capabilities that underpin successful deployment.

GUIDE

Regulatory Data Handbook 2024 – Twelfth Edition

Welcome to the twelfth edition of A-Team Group’s Regulatory Data Handbook, a unique and useful guide to capital markets regulation, regulatory change and the data and data management requirements of compliance. The handbook covers regulation in Europe, the UK, US and Asia-Pacific. This edition of the handbook includes a detailed review of acts, plans and...