Financial organisations are prone to lax cybersecurity practices

Netwrix survey reveals that 33% of financial organisations discovered sensitive data in insecure storages, and 40% of them have poor access management practices.

  • 4 years ago Posted in

Netwrix has published additional findings from its 2020 Data Risk & Security Report. The report reveals that financial organisations are prone to a range of insufficient cybersecurity controls that make them vulnerable to escalating cyber threats.


According to the survey, one third of financial organisations discovered sensitive or regulated customer data outside of designated secure locations in the past 12 months. Almost half (40%) of respondents admitted that in the same time frame that their IT teams granted direct access to sensitive data based solely on a user’s request. On top of that, IT teams are overloaded with addressing data subject access requests (DSARs) as a part of GDPR compliance since 73% of respondents report that DSARs put significant or moderate pressure on IT staff.

Other notable findings of the report include:

  • 70% of unauthorised data sharing incidents led to data compromise
  • 32% of financial organisations have experienced a surge in data subject access requests (DSARs)
  • 44% of CISOs and CIOs in financial organisations don’t have or don’t know whether they have KPIs to report on IT security and cyber risk

“As COVID-19 pandemic accelerates the rise of digital payments, financial organisations are generating more and more data, which makes the sector a tempting target for cybercriminals. Poor access management practices and lack of control over sensitive data make the sector vulnerable to these increasing threats. Organisations need to mitigate security risks by deploying technologies that enable them to regularly review and correct access permissions as well as to automatically discover their sensitive data enterprise-wide regardless of where it is located, and to move it to a secured storage. This will help them enhance their security posture despite an increasing workload and decreased resources,” said Ilia Sotnikov, VP of Product Management at Netwrix.

Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Atos has launched Atos OneCloud Sovereign Shield, a set of solutions, methodologies, and...
New distribution agreement set to bolster Westcon-Comstor’s Zero Trust offering in more markets...
Research from Avast has found that employees in almost a third (31%) of Small and Medium...
This year, over half of MSPs or their end customers have been attacked by ransomware but only 53%...
Trend Micro has published new research revealing that 90% of IT decision makers claim their...
Cyber consultants call on businesses to act now, or risk budgets shrinking further in ‘real...