Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking & Finance Review®

Global Banking & Finance Review® - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Advertising and Sponsorship
    • Profile & Readership
    • Contact Us
    • Latest News
    • Privacy & Cookies Policies
    • Terms of Use
    • Advertising Terms
    • Issue 81
    • Issue 80
    • Issue 79
    • Issue 78
    • Issue 77
    • Issue 76
    • Issue 75
    • Issue 74
    • Issue 73
    • Issue 72
    • Issue 71
    • Issue 70
    • View All
    • About the Awards
    • Awards Timetable
    • Awards Winners
    • Submit Nominations
    • Testimonials
    • Media Room
    • FAQ
    • Asset Management Awards
    • Brand of the Year Awards
    • Business Awards
    • Cash Management Banking Awards
    • Banking Technology Awards
    • CEO Awards
    • Customer Service Awards
    • CSR Awards
    • Deal of the Year Awards
    • Corporate Governance Awards
    • Corporate Banking Awards
    • Digital Transformation Awards
    • Fintech Awards
    • Education & Training Awards
    • ESG & Sustainability Awards
    • ESG Awards
    • Forex Banking Awards
    • Innovation Awards
    • Insurance & Takaful Awards
    • Investment Banking Awards
    • Investor Relations Awards
    • Leadership Awards
    • Islamic Banking Awards
    • Real Estate Awards
    • Project Finance Awards
    • Process & Product Awards
    • Telecommunication Awards
    • HR & Recruitment Awards
    • Trade Finance Awards
    • The Next 100 Global Awards
    • Wealth Management Awards
    • Travel Awards
    • Years of Excellence Awards
    • Publishing Principles
    • Ownership & Funding
    • Corrections Policy
    • Editorial Code of Ethics
    • Diversity & Inclusion Policy
    • Fact Checking Policy
    Original content: Global Banking and Finance Review - https://www.globalbankingandfinance.com

    A global financial intelligence and recognition platform delivering authoritative insights, data-driven analysis, and institutional benchmarking across Banking, Capital Markets, Investment, Technology, and Financial Infrastructure.

    Copyright © 2010-2026 - All Rights Reserved. | Sitemap | Tags

    Editorial & Advertiser disclosure

    Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    1. Home
    2. >Finance
    3. >The financial services sector must balance modernisation with security and compliance
    Finance

    The Financial Services Sector Must Balance Modernisation With Security and Compliance

    Published by Jessica Weisman-Pitts

    Posted on May 19, 2022

    6 min read

    Last updated: February 7, 2026

    Add as preferred source on Google
    This image depicts a graph highlighting the rise of cybersecurity threats targeting the financial services industry, emphasizing the urgent need for modernization while ensuring security and compliance.
    Graph illustrating cybersecurity threats in financial services - Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    Tags:cybersecuritycompliancefinancial servicesDigital transformationcloud computing

    By Prakash Pattni, Managing Director for Financial Services Digital Transformation, IBM

    The ability of viruses to evolve almost in step with our defences is something the world has become very familiar with. While nations have worked to vaccinate their populations at speed, organisations have faced a parallel challenge against the cyber equivalents of COVID-19. The wide-spread adoption of hybrid working, often supported by cloud-based systems and the creation of increasingly complex digital supply chains, has created new opportunities for adversaries to launch cyber-attacks and compromise valuable data.

    The financial services industry, with its vast treasure trove of sensitive data, is high on the hit list. The scale of the security challenge for financial businesses was exposed by IBM’s recently published 2022 X-Force Threat Intelligence Index. The sector witnessed 19% of all UK cyberattacks in 2021; the global figure was 22.4%. To put that in perspective, last year the sector was the second most attacked industry worldwide. Of all those attacks, 70% were on banks, 16% were on insurance companies and 14% were on other types of financial institutions.

    As financial services companies modernise, there is a clear need for an approach to security that supports the shift towards digital business models while reassuring customers and regulators.

    Complexity is the enemy of security

    The sobering statistics on cyber-attacks in financial services come at a time when the industry is undergoing major disruption. Financial institutions are transforming to better serve their increasingly digitally savvy customers and find new sources of revenue, as fintechs exploit new channels and business models. But as major security incidents across the private and public sectors have shown, the adoption of technologies that support digitisation, such as cloud platforms, can create a wider attack surface for cyber criminals to exploit.

    The fragmentary approach many businesses have taken as they scrambled to take advantage of cloud platforms has led to systems created from disconnected parts that are riddled with complexity – the enemy of security. Massive cyber-attacks in recent years have been successful because they took advantage of the digital supply chain – a vast, intermixed supply chain of business and technology partners.

    Zero trust

    The inherent trust that exists within these complex environments – across many user and application relationships within the network – has created more pathways for adversaries to access sensitive and critical data. This is why we’re beginning to see a global shift to zero trust security architectures. Zero trust is a methodology that abandons the idea you can trust anyone or anything as far as security is concerned. Every user and application needs to be re-evaluated and re-authenticated and then given the lowest set of system privileges required for them to operate. This approach adds an additional layer of security defence to other technological solutions and is essential where remote working is commonplace, as it is in many financial services businesses.

    Going hybrid to stay secure

    As the industry faces increasing threats, regulators are increasingly requiring financial institutions to use multiple clouds to mitigate systemic risk. This is partly what has been driving the trend for a hybrid, multi-cloud model, which gives companies the choice to host workloads and data where it needs to be – across multiple public clouds, or private cloud or on-premise – and allows data to be moved to wherever it is needed. Research from the IBM Institute for Business Value and Oxford Economics found that only 3% of businesses globally are using a single cloud – down from 29% in 2019.[1]

    Where a business’s data resides matters. That’s why we’re seeing established financial institutions continue investing in their on-premises mainframe systems, which remain vital for the industry, as well as public clouds. In fact, today, mainframe technology is evolving alongside public cloud solutions to stay several steps ahead of cyber criminals. For example, modern mainframes can now use artificial intelligence (AI) capabilities that enable clients to detect and prevent fraud during transactions such as credit card payments, in real-time. The latest mainframes are also now capable of protecting sensitive data from the future threat of maliciously deployed quantum computing technology, which will be capable of breaking through all current forms of encryption.

    Keeping data safe in the cloud

    Whether it’s payments, investments or savings, the data financial institutions hold makes them a top target. As a result, the industry has adopted some of the most advanced security measures and strategies available. For example, to keep customers and proprietary data secure and private, enterprise-grade security innovations, such as ‘keep your own key’ encryption and confidential computing, are essential for financial institutions.

    Confidential computing processes data in a shielded enclave, ensuring users have the security they need when conducting online interactions and transactions. It means company A can use a public cloud platform, which is also used by company B, and neither company B nor the cloud provider itself can view the data. This is true when the data is being used, at rest, or when it’s being moved.

    Protecting data and managing encryption across multiple platforms can be complex and all it takes is one weak link to put a company’s entire security strategy at risk. To overcome this, companies should adopt solutions that provide a single point of control to manage encryption keys securely and simply across platforms – including on other clouds and on-prem. This holistic view can also help companies demonstrate their compliance faster, freeing up time and resources to drive innovation.

    De-risking the supply chain with an industry cloud

    The need to level up security for the cloud era is also fuelling interest among financial institutions in adopting industry-specific cloud platforms. Research from IBM in the UK found that for 43% of financial services respondents, data security was the biggest barrier to digital transformation while 90% said their company had already adopted or planned to adopt an industry cloud.

    There’s good reason for this trend. A cloud designed for the needs of the financial services industry not only supports the most advanced enterprise security technologies, but it also helps to de-risk the ecosystem of financial institutions, including the third and fourth parties in their supply chain. An industry cloud platform can have the necessary security controls built into its code, so that all financial institutions, partners and fintechs meet the required standard. The same is true for the stringent regulatory compliance standards banks must meet. With compliance controls built into the industry cloud platform, banks can automate compliance across their entire digital estates, and ensure the partners they transact with have demonstrated compliance with the platform’s requirements.

    Highly regulated industries, particularly financial services, are feeling pressure to transform with an ever-increasing rate and pace. However, in doing so, they must not lose focus on security, resiliency and compliance as they digitise.

    [1] Source: https://www.ibm.com/thought-leadership/institute-business-value/report/cloud-transformation

    Frequently Asked Questions about The financial services sector must balance modernisation with security and compliance

    1What is cybersecurity?

    Cybersecurity refers to the practice of protecting systems, networks, and programs from digital attacks. It involves implementing measures to safeguard sensitive data and ensure the integrity of financial transactions.

    2
    What is compliance in financial services?

    Compliance in financial services involves adhering to laws, regulations, and guidelines to ensure that financial institutions operate within legal frameworks and maintain ethical standards.

    3What is digital transformation?

    Digital transformation is the process of integrating digital technology into all areas of a business, fundamentally changing how it operates and delivers value to customers.

    4What is a hybrid cloud model?

    A hybrid cloud model combines public and private cloud environments, allowing businesses to host workloads and data across multiple platforms for greater flexibility and security.

    5What is zero trust security?

    Zero trust security is a cybersecurity model that requires strict identity verification for every person and device attempting to access resources on a network, regardless of whether they are inside or outside the network.

    More from Finance

    Explore more articles in the Finance category

    Image for Thyssenkrupp, Jindal steel sale talks falter on pension, energy costs, sources say
    Thyssenkrupp, Jindal Steel Sale Talks Falter on Pension, Energy Costs, Sources Say
    Image for M&S targets faster fashion cycle with launch of monthly capsules
    M&s Targets Faster Fashion Cycle With Launch of Monthly Capsules
    Image for Submit Your Nominations for CFO of the Year 2026
    Submit Your Nominations for CFO of the Year 2026
    Image for EU not doing enough to unblock cross-border services, auditors say
    EU Not Doing Enough to Unblock Cross-Border Services, Auditors Say
    Image for Austrian lower house paves way for measures to counter rising fuel prices
    Austrian Lower House Paves Way for Measures to Counter Rising Fuel Prices
    Image for Novo Nordisk cuts Wegovy price in South Africa for a second time
    Novo Nordisk Cuts Wegovy Price in South Africa for a Second Time
    Image for Italy hopes to receive more gas from Algeria, Meloni says
    Italy Hopes to Receive More Gas From Algeria, Meloni Says
    Image for EU review of France nuclear plan expected to progress swiftly, French official says
    EU Review of France Nuclear Plan Expected to Progress Swiftly, French Official Says
    Image for Soaring costs prompt French farmers to reconsider sowings
    Soaring Costs Prompt French Farmers to Reconsider Sowings
    Image for Greenland independence party wins seat in Danish parliament at key moment
    Greenland Independence Party Wins Seat in Danish Parliament at Key Moment
    Image for Exclusive-At least 40% of Russia's oil export capacity halted, Reuters calculations show
    Exclusive-At Least 40% of Russia's Oil Export Capacity Halted, Reuters Calculations Show
    Image for Hungary's opposition Tisza party widens lead over Orban's Fidesz, poll says
    Hungary's Opposition Tisza Party Widens Lead Over Orban's Fidesz, Poll Says
    View All Finance Posts
    Previous Finance PostThe Three Steps for Success With Bnpl
    Next Finance PostMaking Private Equity More Inclusive for Women Is Key to Future Success