Business
Will cyberattacks be uninsurable in 2023? Three steps that financial organisations can follow now
Source: Finance Derivative
By James Blake, Field CISO of EMEA, Cohesity
The growing number of cyber attacks and subsequent damage has led to an increasing demand for cyber insurance. Swiss Re Insurance expects total premiums paid to more than double from $10 billion from 2020 to $23 billion by 2025. But this is being questioned by both insurance companies and by customers: is insurance effective, is it feasible, what does it cover and what does it enable? The CEO of Zurich Insurance, Mario Greco, said in an interview with the Financial Times recently that cyberattacks will soon become “uninsurable”. Indeed, insurance and prevention have both proved ineffective in stopping cyberattacks like ransomware or in enabling organisations to recover afterwards. Instead organisations must shift their focus onto recovery, What can companies do to meet this challenge? James Blake, Field CISO of EMEA at data management and security provider Cohesity, has three recommendations.
More than 400 million US dollars – that’s how much damage the data leak at Capital One caused in 2019. And the number of such attacks, which have catastrophic consequences for the companies affected, has continued to increase since then. According to Check Point, in the third quarter of 2022 alone, global attacks increased significantly by 28% compared to the same quarter of the previous year.
Where cyber risk used to be limited to areas such as data breaches and third-party liability, ransomware attacks have shifted the damage to core business and accountability. Cyber insurers had to react to the increased risk and have adjusted their offers, as an analysis by Swiss Re Insurance shows. According to PWC, from the insurer perspective, the fast-increasing frequency of ransomware attacks (and the growing associated impacts and ransom demands) and business interruption claims has resulted in cyber becoming a less profitable area of insurance in recent times. The situation has stabilised over the past year as customers have had to pay higher premiums and meet stricter terms and conditions. Swiss Re Insurance expects total premiums paid to more than double from $10 billion to $23 billion by 2025.
More expensive and more difficult to qualify
This is bad news for the financial industry, as insurers are becoming stricter and asking for higher premiums. Cohesity’s legal experts looked at the leading ransomware insurance policies on the market at the end of 2022 and found that ultimately, such guarantees are little more than thinly veiled limitations of liability that benefit the providers – not the customers.
However, there are some measures that companies can use to protect themselves effectively in this new market situation:
- The 3-2-1 strategy remains current: keep an isolated copy of the data
In some cases, organisations are required to quarantine an offsite copy of their production records as part of a 3-2-1 strategy to qualify for cyber insurance.
To do this, they can use a SaaS service which keeps an encrypted copy of the production data in the cloud, isolated by a virtual air gap. The data stored there is monitored with multi-layered security functions and machine learning, and anomalies are reported immediately.
- Tear down silos and merge data with zero-trust in mind
In general, financial organisations should consolidate all their distributed data on a scalable data management platform and ensure they can backup their data across all their infrastructure and assets. Furthermore, the data must be protected in a zero trust model, where the data is encrypted during transfer and on this storage, access is strictly regulated with rules and multi-factor authentication. In addition, all data stored in it can be managed according to compliance requirements and, thanks to immutable storage, is better protected against ransomware.
- Improve collaboration between IT and SecOps teams for cyber resiliency
In addition to these technical measures, financial organisations should optimise the collaboration between their IT and security teams and adopt a data-centric focus on cyber resilience. For too long, many security teams have focused primarily on preventing cyberattacks while IT teams have focused on protecting data including backup and recovery.
A comprehensive data security strategy must unite these two worlds and IT and SecOps teams must work together before the attack takes place. Both teams should be guided by the NIST framework. This holistic approach defines five core disciplines: Identify, Protect, Detect, Respond and Recover.
If a financial company can demonstrate such a mature data security strategy, this will not only have a positive effect on insurance cover, but will generally reduce the risk of incidents and possible consequential damage through failure or data loss.
You may like
Business
How to maintain efficiency without sacrificing authenticity with GenAI
Jason Morris, SEO Marketing Manager, Brew Digital
Content creation has been fundamentally and forever changed by GenAI tools. They offer a fast and efficient way of building content, in a matter of seconds, and a majority of businesses have been deploying it in some capacity for the last two years.
In particular, tools like ChatGPT, Copy.ai and Jasper have transformed copywriting, allowing businesses to quickly turn around high-quality content, social media content, blog posts and marketing copy, in a matter of minutes. It has also revolutionised our approach to SEO, helping with everything from optimising keywords to generating content that meets search engine standards.
However, the same capability that makes AI attractive – its speed in generating content – can result in copy that feel generic and impersonal, risking the intuition and creativity that are essential for compelling brand messaging. This is because AI, by nature, operates on probabilistic models that predict the most likely next word or phrase based on patterns in the data it has been trained on.
Large language models (LLMs), are excellent at identifying and replicating patterns, but lack the creativity and intuition that come from human experience. While this can be useful for producing factual or structured content, it often results in formulaic writing that lacks originality and depth. In areas like storytelling or thought leadership, where original insights are key, AI struggles to deliver the same level of nuance and emotional connection that human writers can achieve.
Inauthentic writing does not just risk disengaging brand audiences, either, and many search algorithms are now designed to detect web pages with AI-generated content and diminish its domain authority. This will inevitably lead to diminished visibility and a drop in organic traffic, and is exemplified by Google removing a staggering 40% of indexed web pages for failing to meet its E-E-A-T (Expertise, Experience, Authoritativeness, Trustworthiness) standards. This is a trend we can expect to see continue as GenAI created content becomes even more prevalent.
Thus, the challenge for brands in the age of AI is to harness the power of efficiency without losing the unique voice that sets them apart.
‘Bans’ are counter-intuitive
The first step in striking the balance between efficiency and authenticity is to establish blueprints for how AI can and should be used within a business setting. For companies keen to retain that human flair, limiting AI usage may seem attractive. However, staff will use GenAI for content creation regardless of whether or not their employers tell them not to. In fact, a blanket ban on GenAI will only lead to the bigger challenge of ‘Shadow AI’.
Recent research shows that 78% of knowledge workers use their own AI tools to complete work, yet 52% don’t disclose this to employers. This not only poses significant organisational risks like data breaches, compliance violations, and security threats, but it also means business leaders will never have full transparency over how much, and how often, GenAI is being used to create the messaging that’s being published for customer or public consumption.
So how should GenAI be used?
For businesses that regularly need to create high-volumes of detailed content, GenAI tools like Jasper can provide crucial support for building first drafts, generating ideas, and providing digestible summaries or even detecting mistakes across existing copy. This process of leaving the more time-consuming content creation tasks to AI frees up considerable time for content creators and enables them to focus on strategy and creativity.
Likewise, tools such as MarketMuse can analyse audience behaviour and preferences, audit existing content, suggest SEO optimisation, and identify gaps in coverage. These data-driven insights enable brands to create more tailored and engaging content, improving both reach and conversion rates.
Another significant advantage is consistency. Ensuring a uniform tone and style across various platforms is essential for cultivating a cohesive brand identity. AI tools play a crucial role here, by supporting content so that it aligns with established brand guidelines. By maintaining consistent messaging, businesses can strengthen their connection with their audience and foster long-term trust.
For businesses and content creators looking to use GenAI to create content which will be made public, it’s essential for them to review, refine and personalise outputs extremely carefully. This ensures that the final output remains true to the brand’s voice and offers genuine value to the audience.
GenAI is no substitute for human storytelling
While AI can support efficiency, human insight is essential for crafting content that truly resonates. This is especially true in storytelling and in complex strategies like seo consultancy, where aligning with audience expectations requires a thoughtful, hands-on approach.
Humans are still best equipped to connect with audiences on an emotional level. Storytelling, creativity, and real-life experience are areas where human writers hold a distinct advantage.
By blending AI’s efficiency with the creativity and empathy that only humans can bring, brands can produce content that is not only high-quality but also deeply engaging. AI tools, therefore, should complement human creativity, not replace it. Striking this balance allows businesses to maximise efficiency without sacrificing authenticity, creating content that resonates and builds long-term connections with audiences.
Business
Artificial intelligence will revolutionise the manufacturing industry: here’s how
By Grace Nam, Strategic Solutions Manager at Laserfiche
Much of the manufacturing industry continues to rely on traditional ways of handling data and documentation, with scattered technology and complex processes acting as barriers to progress and hybrid working. This siloed information coupled with rising costs, logistical uncertainty, and doubts over the supply of essential raw materials is making manufacturing stagnant.
The answer is digitalised smart systems and processes. Innovations such as AI-powered cloud document management systems (DMS) can control and organise critical data, creating a single source of truth to streamline processes and provide multi-layer protection against missing documentation to comply with regulations. Let’s look at some of the core ways that AI will revolutionise manufacturing: minimising errors, empowering employees, and attracting talent.
Harmonising processes, freeing up time
First, by digitalising data and investing in AI integrations, manufacturing leaders can reduce margin for error. While the integration of IOT may appear to garner similar results, the real impact of AI is incredibly different.
IOT focuses on supporting machines and network enablement. On the other hand, AI supports the functionalities that are traditionally confined to the realm of human responsibility and intelligence. While IOT connects physical objects to manufacturing networks, AI harmonises the entire process and structures unstructured data.
The value of AI lies in its scalability. AI can reduce tedious data entry for employees and eliminate delays, having the potential to transform employees’ lives by reclaiming time for valuable projects and saving resources.
Creating more efficient process cycles
AI also enables manufacturing leaders to enhance process automation, making the more time-consuming elements of the manufacturing process rule-based and decision-driven. For instance, in a recent SME study that surveyed over 300 manufacturing professionals, one-third of respondents reported experiencing work delays a few times a week across various operational processes.
As is the case with minimising errors, the role of AI is to free up human employees for other tasks, not replace them. AI and ML are invaluable tools to save countless hours wasted by employees fulfilling administrative tasks, reclaiming significant amounts of time that can be redirected to supporting customers. Manufacturing companies can implement processes driven by AI and ML to streamline areas of the business and integrate processes that often experience delays, as well as augmenting high-cost processes involved with compliance documentation to create better process cycles.
AI-powered decision making
With endless data at their fingertips, leaders can utilise AI to gain insights and power decision-making. This technology gives organisations the ability to centralise customer information and order history and gather product information that involves hundreds or even thousands of parts, where each part carries its own unique identification number.
Another example could be analysing the data in relation to how suppliers perform, enabling the manufacturing organisation to better understand what to expect and prepare for potential pitfalls in advance.
AI-powered technologies are also being implemented to resolve interoperability issues, enabling computer systems and software to exchange and make use of information across platforms. Allowing data to be shared between different software and technologies will help in streamlining processes.
By utilising process automation and enhancing data processing speed, we can expect organisations to see an increase in operational efficiency. These improved systems will reduce costs while improving scalability and flexibility, enabling the streamlined sharing of data across the business.
Looking ahead: the future of manufacturing
AI-powered solutions improve the working lives of almost everyone in the sector, helping them make better informed decisions at speed, while process automation solutions empower remote employees who are integral to the success of future workforces. This innovation is vital for businesses to attract, and retain, new generations of talent.
AI and machine learning are offering the manufacturing industry the opportunity to unlock new levels of efficiency and create a solid foundation for future growth and innovation. From sales and supply chain management to quality checks and inventory control, AI is streamlining complex processes, predicting potential issues, and ensuring timely delivery of projects.
It’s not just about keeping up with technological trends and jumping on the bandwagon. AI proves its worth for manufacturers aiming to make critical decisions promptly, effectively address high-cost functionalities, streamline operations, ensure accuracy of compliance documentation, enhance scope for innovation, boost ROI, and improve sustainability. By bringing together human intuition with the speed and scale of AI technologies, manufacturers can remain competitive – and continue to evolve – for years to come.
Business
The role of leadership during digital transformation projects in the financial services sector
Stephen Foreshew-Cain is CEO of Scott Logic, the specialist software consultancy
Until around a decade ago, the UK financial services and banking industries were dominated by a core group of major players who controlled almost the entire market. They built up their offering over a period of decades – even centuries in some cases – and invested in robust, weighty technology platforms pre-millennium that were seemingly built to last and which most hoped could be relied on for years to come.
These businesses still hold significant market share, but in recent years their position has come under attack from the emergence of several notable challenger banks. This change has slowly but surely driven the need for digital transformation within the established financial services market and seen many firms consider modernising their offering. However, the success of these programmes depends on much more than buying the latest off-the-shelf package, and there are several elements that dictate how effective this change really is. Leadership is one of those factors; but what’s driving this need for digital transformation and why is having the right management in place so critical to success?
Modernisation pressures
Perhaps no other sector has felt the pressure to modernise itself as much as financial services, where growing security challenges – and the rise of the aforementioned emerging brands – have made this a priority. These newer digitally native organisations are setting the standards for customer experiences and operational efficiency, and the more long-standing institutions are battling to keep up. The challengers have demonstrated how a digital-first approach can offer a superior customer experience and deliver greater operational efficiency. These banks have built their infrastructure from the ground up and have leveraged big data, embraced cloud-native architectures, and developed a focus on user-centric design and experiences. And their streamlined processes, fast decision-making, and commitment to innovation have won them a growing share of the market.
In contrast, many of the more established financial groups are built on platforms that were developed decades ago. While this may sound staggering, it’s understandable. It’s only in recent years that the cloud has matured sufficiently to offer a viable migration path to these institutions, with more benefits than were previously available.
In addition, there is an inherent resistance to change amongst more long-standing institutions – again, for understandable reasons; much of their success is based on caution and reducing risk. One wrong move or misstep can naturally set off a domino effect that has ramifications around the world, as seen in the global financial crisis in 2008. Convincing these organisations to go through the process of upgrading their systems to replace a platform with another more modern one, that does something very similar, is challenging. Hierarchical organisational structures can often hinder rapid decision-making and the swift adoption of innovative and emerging technologies.
Despite these challenges, now is the time for change. External market forces, improved customer experience, cyber-resiliency, and the ability to meet evolving regulatory requirements means that migration from legacy is no longer a ‘nice to have’. The pace of evolution in modern technology means that the longer organisations wait, the rate at which challengers outstrip them will only accelerate. Migration projects are as challenging as they ever were; however, it is now possible to employ migration strategies that allow a phased process, making them easier to manage from a risk mitigation perspective. Any remaining reasons to delay are now massively outweighed by the reasons to proceed with migration – frankly, it’s now imperative.
The pivotal role of leadership
That’s not to say that all modernisation programmes are a success; research from McKinsey indicates that over 70% of digital transformation projects fall short of their goals. There is a range of factors to this, but a common recurring theme is ineffective leadership. Without leaders capable of reimagining these structures and securing buy-in from the workforce, digital transformation initiatives are always likely to encounter issues.
However, in the context of digital transformation, leadership is more than just guiding an organisation through technology adoption. These individuals are responsible for setting the tone and direction for change, building a sense of urgency, and ensuring that the everyone understands the purpose behind the transformation. Remembering the quote attributed to Peter Drucker, culture eats strategy for lunch. The best managers will be able to set a clear vision for change and convey palpably how it will benefit customers and colleagues. They will also be adept at fostering a more agile culture, encouraging collaboration and a sense of continuous learning across teams. To horribly torture Drucker’s famous statement, if strategy is lunch, leaders need to make sure culture is the breakfast of champions.
There’s a form of culture that’s more than “the way we do things here”. It’s something that’s baked in; the structural risk aversion that often critically undermines the change programmes organisations set out to deliver. It doesn’t matter how many digital experts an institution hires to lead the way into a digital future if outdated governance approaches fetter initiatives before they can get out of the starting blocks. Leaders need to be given the scope to propose new approaches to investing in infrastructure – ones that not only balance investment in legacy modernisation with investment in innovation, but which allow the two to work in symbiosis.
Fundamentally, culture should not be allowed to eat innovation for lunch; leaders need to be free to keep pace with innovation beyond the ‘walls’ of their institution – free indeed to conceive of those walls breaking down as the banking ecosystem of the future takes shape.