The challenge
Financial service and insurance organizations are on an accelerating journey toward digital transformation, ahead of most other industries, raising the demand for digital interaction and cloud migration. They also hold sensitive data for their customers and must ensure confidentiality and regulatory compliance with a raft of Atos approach different regulations to adhere to such as PSD2, PCI-DSS.
They were the most-attacked industry for the fifth year running in 2020. Security, therefore, is fundamental to avoiding disruption to service, gaining and maintaining trust, protecting reputation and achieving a competitive edge.
The risk
The risks for financial institutions of getting their security wrong are enormous. A data breach can impact their credit rating and lead to a loss of trust from their customers who can easily take their business elsewhere.
Exposure to risk has also been exacerbated by the pace of change in digitization and the recent move to remote working during the pandemic.
Atos approach
Security and trust must be built into the broader business strategy, taking consideration of long-term goals, primary risks they face and the value-add they want to bring to customers.
Atos’s strategy is based on three strands:
Understand what the business 2 is trying to achieve – their digital transformation and business strategy and the critical risks they need to address.
What does this strategy mean for the technology, people and processes and the security principles that need to be addressed as part of development?
How do we translate the above into delivery using an agile
methodology with risks and regulations considered as part of security by design upfront?
This approach is also supported by a range of security products, including Trustway encryption solutions, IDnomic for trusted digital identities and Evidian Identity and Access Management solutions.
We now build with a Zero Trust approach to security. We establish security boundaries through identity least priviledge credentials and access management, enforcing the security policy and trust domains at an architectural as well as a technical level.”
Ian Cole
Group Industry Director Financial Services and Insurance, Atos