Connect with us
Finance Digest is a leading online platform for finance and business news, providing insights on banking, finance, technology, investing,trading, insurance, fintech, and more. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.
BUSINESS

Hybrid working and the continued security challenges for financial organisations

Published On :

Andrew Gehrlein, Chief Financial Officer, Park Place Technologies

 

What started out as a Band-Aid approach to equipping home working in the first lockdown, has today become a permanent and accepted approach of employment for some staff in the financial sector. As lockdowns have continued to rage, employees have expressed their desire to continue with remote working practices in some form. In April 2021, leading management consulting firm McKinsey published its comprehensive report on the future of the physical workplace¹. Across the report’s twenty conclusions, one stood out in determining the future of the physical workplace – the majority of employees (52%) voiced that they would prefer to work for organisations’ that offer a continued hybrid model of working. McKinsey expanded the definition of hybrid workplaces to include the usage of flexible workspaces physically located outside of existing company office locations to include home office workspaces alongside communal spaceworks.  In the world of Financial Services, which has been traditionally delivered from centralised, highly secured locations housed from geographical areas of expertise, how, do finance infrastructure leads accommodate this ongoing transfer of working conditions, especially with the increased security parameters that the world of trading demands?

Since the initial reactionary rush to accommodate working from home mandates in March 2020, these IT infrastructure leads have now had the benefit of time and experience to consider, mitigate and control the security impacts that continued hybrid working poses in finance. Today, these leads are proactively focused on developing a clear, structured and continued strategy for those organisations and employees who elect to work outside of company facilities. This is a monumental task in any sector, but compounded in financial services where speed, security and increased regulatory pressures are paramount considerations in any financial exchange. Hybrid staff continually need to access devices and exchange data above and beyond the usual elaborate security firewalls that these organisations typically embrace from within fixed corporate networks. This flexible requirement is a tall order when you consider that in practice, these IT leads now have to map and identify all possible ingress and egress points in their newly expanded dispersed network before holistically deploying enhanced next generation security and cyber services to give increased protection from hostile activities. This also includes systematic and ongoing understanding of endpoint usage, and endpoints themselves need to be capable of being restricted and isolated quickly, centrally and regardless of physical location in order to avoid further contamination should a security breach occur.

Mapping all devices is clearly an essential start-point. Within a hybrid working strategy, organisations also need to develop a clear understanding of usage of the cloud accounts that access corporate services. Of course, the nature of cloud service provision means that much of this is dynamic, on the fly and complex to track. Additionally, public network usage provides further challenges and need for increased vigilance and staff training in settings such as hub and communal spaces. As an example, data transfer to a wireless printer inside a secure corporate facility poses relatively little risk. Place the same wireless printer within a hub space and the possibilities for hostile activities increase manyfold. Equally in the home environment additional threats exist. These can include routers with exposed modem control interfaces; or staff using their own devices that may fall outside of patching windows; or the dramatic increase in domestic IoT exposure points, all of which need additional consideration within a permanent hybrid working strategy. Faced with the level of challenges, it becomes quickly apparent that finance IT leads essentially need a real-time, always-on, centrally managed discovery and monitoring system of devices and data.

How can this be achieved? Pre-Covid, IT Asset and inventory device management was limited largely to a manual discovery and tracking that assisted with security and auditory requirements. Faced with the complexity and threats outlined outside of corporate locations, today this discovery has to be conducted as an ongoing service, in real-time, expanded across multiple remote locations for immediate discovery, automating and simplifying asset disclosure without manual IT inventory collection. In short, discovery needs to provide complete visibility into financial services’ data centres and cloud environments, and should include servers (physical, virtual & cloud), desktops, peripherals, edge devices, alongside the infrastructure services they offer hybrid workers.

Discovery is the first step. Sound, ongoing, network monitoring is the second. Here, proactive and predictive generic monitoring solutions are needed across estates to give IT finance leads immediate and actionable insights to gain the greatest level of controls allowing identified new devices to be quickly added to the fold. Only then, when IT leads understand what hybrid workers are using at any given point in time, can the appropriate protection and cyber solutions be confidently layered, safe in the knowledge that there are no gaps.

 

¹https://www.mckinsey.com/business-functions/people-and-organizational-performance/our-insights/what-employees-are-saying-about-the-future-of-remote-work

Continue Reading

Why pay for news and opinions when you can get them for free?

       Subscribe for free now!


By submitting this form, you are consenting to receive marketing emails from: . You can revoke your consent to receive emails at any time by using the SafeUnsubscribe® link, found at the bottom of every email. Emails are serviced by Constant Contact

Recent Posts