Governmental Entities Bringing Financial Cybersecurity to Center Stage

By Special Guest
Bill Hogan, VP, Strategic Accounts and Global Financial Services, Fortinet
June 02, 2017

By now, it’s no secret that cybercriminals have targeted, and continue to target, the financial services industry with advanced attacks that are designed to steal or otherwise jeopardize valuable data. As a result, many organizations have taken at least some initial steps to better secure their networks and the information that lives within them.

In fact, according to Duff & Phelps’ “Global Regulatory Outlook,” 86 percent of professionals in the financial services industry say their companies have plans to put more time and resources into cybersecurity in the coming year.

The truth is, financial services organizations aren’t alone when it comes to taking cybersecurity very seriously. Governments and other regulatory organizations have also put financial services cybersecurity in the spotlight over the past year.

Let’s take a closer look at a few of these instances.

Financial Services Cybersecurity Governmental Action on the State Level

On March 1, 2017, the New York State Department of Financial Services (DFS) started requiring banks and insurers across the state to meet minimum cybersecurity standards and to report any breaches that they experience. The rule also calls on organizations to designate a CISO who has the ability to govern cybersecurity policy and structure. Additionally, organizations’ security technologies must include threat detection and response capabilities, and they are also encouraged to scrutinize the policies that third-party vendors have in place. According to the order, “this regulation is designed to promote the protection of customer information as well as the information technology systems of regulated entities.”

Shortly after the requirements were instituted in New York, Colorado took action of its own. The Colorado Department of Regulatory Agencies has proposed new amendments to the Securities Act that would be similar in nature to the requirements in New York. If the amendments are adopted, entities would have to conduct annual cybersecurity risk assessments and implement a number of procedures designed to address encryption, authentication and more.

Financial Services Cybersecurity Governmental Action on the National Level

While there are many risks that face the American financial system, cybersecurity currently sits at the top of the list. This is according to remarks made by the chair of the U.S. Securities and Exchange Commission (SEC) in May of 2016. Cybersecurity was put at the top of the list following an investigation finding that many large financial institutions lacked defenses that matched the sophistication of the threats they’re faced with.

The SEC isn’t the only national entity bringing cybersecurity to the forefront. The National Association of Insurance Commissioners (NAIC) is working on an Insurance Data Security Model Law that is aiming to establish a set of data security standards, and is pushing for investigations and notifications of security breaches of data to insurance providers.

Financial Services Cybersecurity Governmental Action on the Global Level

In addition to action on the state and national levels across the United States, cybersecurity for financial services has taken its spot on the world stage as well. G7 finance ministers and central bankers agreed on a set of cybersecurity guidelines that encourage nations to monitor their own cybersecurity readiness as well as that of the companies they regulate. Additionally, they call on nations to ensure public and private institutions are continually updating their cybersecurity defenses.

According to the authors of the guidelines, “Increasing in sophistication, frequency and persistence, cyber risks are growing more dangerous and diverse, threatening to disrupt our interconnected global financial systems and the institutions that operate and support those systems.”

Final Thoughts

Each of these examples is laying the groundwork for stricter governmental standards and regulations, around both the country and the globe. Financial services organizations should take the appropriate steps necessary to ramp up security efforts and stay in compliance as threats to the industry continuously evolve.

 About the Author

Bill Hogan leads strategic accounts and global financial services at Fortinet, where he is responsible for sales, systems engineering and business development. He formerly served as president of WebHouse, where he enabled customer success through the effective use of IT and business solutions. From 2003 to 2014, Hogan led NetApp’s Americas East and America's Enterprise Sales and Business Operations. He started his career at EMC where he spent 10 years in various sales and leadership roles. Bill is a father of five and avid philanthropist.




Edited by Alicia Young


SHARE THIS ARTICLE
Related Articles

Why People Don't Update Their Computers

By: Special Guest    7/13/2018

When the WannaCry ransomware attacked companies all over the world in 2017, experts soon realized it was meant to be stopped by regular updating. Even…

Read More

More Intelligence About The New Intelligence

By: Rich Tehrani    7/9/2018

TMC recently announced the launch of three new artificial intelligence events under the banner of The New Intelligence. I recently spoke with TMC's Ex…

Read More

Technology, Innovation, and Compliance: How Businesses Approach the Digital Age

By: Special Guest    6/29/2018

Organizations must align internally to achieve effective innovation. Companies should consider creating cross-functional teams or, at a minimum, incre…

Read More

Contribute Your Brain Power to The New Intelligence

By: Paula Bernier    6/28/2018

The three events that are part of The New Intelligence are all about how businesses and service providers, and their customers, can benefit from artif…

Read More

TMC Launches The New Intelligence - an Unparalleled AI and Machine Learning Conference & Expo in Florida

By: TMCnet News    6/28/2018

TMC announced the launch of The New Intelligence conference and expo - The Event Powering the AI Revolution. This exciting new event will take place o…

Read More