Cybersecurity continues to be a source of concern for financial institutions. Financial institutions are attractive targets for hackers who are systematically looking for vulnerabilities and the most lucrative payoffs. Events of the past year underscore the need for organisations to improve their cyber-defence capabilities. The costs of cyber-attacks are substantial. Affected organisations suffer loss of reputation, and more tangibly, share prices could suffer as worried customers move their business elsewhere.
In response, financial institutions have been beefing up their cybersecurity defences. Many understand the need to set aside a budget for this purpose. The challenge for organisations is to determine the appropriate level of cybersecurity needed and the amount of resources to be dedicated. The return of investment on cybersecurity is in the form of loss avoided and not profit gained. These and other considerations on developing a cybersecurity framework are discussed in this issue.