At CISO Platform Annual Summit 2017, we had a panel discussion on the topic of Security Strategy for BFSI in 2018: Handling Changes in Threat and Regulatory Landscape,  including industry stalwart like Parag Deodhar (Chief Information Security Officer-Asia Japan & Business Services, AXA Group), Satyanandan Atyam (Associate Vice President, Chief Information Security Officer, Data Privacy Officer, Bharti AXA General Insurance), Prasad Sathye (CIO, Navanagar Cooperative Urban Bank), Sanjay Tiwari (CISO, Suryoday Small Finance Bank), and Prasanna Lohar (HEAD TECHNOLOGY, DCB Bank).

Key Learning - Security Strategy for BFSI in 2018: Handling Changes in Threat and Regulatory Landscape

  1. RBI has made compliance and reporting more stringent. Regulators will be tightening further with IRDA,SEBI following footsteps of RBI.(RBI is more lethal with ReBIT)
    1. Regulators have come together and are conducting awareness sessions for CISO’s on Cyber resilience and Cyber Crisis Drills.

  2. Privacy and UIDAI are important aspects moving ahead
    1. The Data Privacy Bill is being discussed and is on the anvil to be released for the body corporates to protect the Personal Data

  3. Ransomware and Phishing attacks will be biggest threat     
    1. The Threat landscape has changed and the investment around Network Perimeter for Protection solutions would not be relevant. Perpetrator is able to penetrate through the network through Phishing attacks , social engineering circumventing the Network Perimeter controls.

  4. Social engineering and phishing will be exploited much more.
    1. To avoid more awareness is to be created
    2. Make top management and board members risk owners

  5. Targeted attack and detection is one of the important  aspects to be addressed by the compliance

  6. With increasing number of smaller banks entering the digital banking space, lower level of cyber security preparedness and controls could pose a systemic threat. This will involve more regulatory controls to mitigate the risks.

(Use FireCompass discovery and comparison tool to shorten your vendor assessment cycle by months. Sign Up for FREE)

E-mail me when people leave their comments –

You need to be a member of CISO Platform to add comments!

Join CISO Platform

Fireside Chat - Lessons Learnt From The Solarwinds Attack

  • Description:
    Meet Sudhakar Ramakrishna, CEO of @SolarWinds to discuss ‘Lessons Learnt From The SolarWinds Attack’.
    The ‘SolarWinds hack’, a cyberattack recently discovered in the United States, has emerged as one of the biggest ever targeted against the US government, its agencies and several other private companies.
    Here’s an exclusive live chat with the CEO to understand what went wrong, what to prevent and lessons learnt. Join us in the live session (Limited Seats)…
  • Created by: pritha
  • Tags: solarwindshack, ceo