Financial institutions are paying too much attention to external security threats, leaving them more vulnerable to internal attacks, according to a new survey.
According to the poll of senior city IT staff at a security seminar in London last month, whilst financial institutions are generally very well protected at the perimeter, they often ignore the threat of attack from within.
Clive McCafferty, managing director at security company Centurycom commented: "Financial organisations are very good at constructing barriers to keep the outside world away, but their concentration on external hackers often makes them neglect possible threats from within the company."
He added: "Many companies know they are doing this, but they are too preoccupied with Y2K or other projects that will provide a return."
McCafferty said that previous research has shown that attacks from within a corporation are far more common that those from outside corporate barricades.
Staff who took part in the survey said that a change in business reporting structures is necessary to reduce the risk of internal threats.
Most said they find that cost justification from business units for IT systems leads to tactical solutions being deployed, so companies often end up with a number of different, distributed point systems that are unable to interact.
This makes security management difficult and increases the risk of internal fraud, espionage and sabotage, as companies are unable to monitor and control use of systems centrally.
Did you make the shortlist for the UK's most respected IT event?
Latest Tesla news: Tesla share price continues to fall after Saudi Arabia's sovereign wealth fund is linked to investment in rival
SEC 'probe' takes its toll on Tesla as new research suggests that Tesla loses $6,000 on every $35,000 Model 3
RTX 280 Ti will come with 11GB of fast GDDR6 video RAM with a 352-bit memory bus offering 616Gbps
The scale of jobs lost to automation will be at least as large as those in the first three industrial revolutions