Security and service assurance

Issue 3 2021 Financial (Industry)

The rise of the pandemic last year meant that corporates around the globe had to embrace a highly dispersed, virtualised environment to keep the wheels of business turning. This is now changing the way that banks need to move forward, with both their security as well as their service assurance.

So says Darren Anstee, chief technology officer for security at NETSCOUT, a global provider of service assurance, security and business analytics. He explains that, at the start of 2020, digital transformation in the financial services sector was already well underway and the intervening year has only accelerated this transformation.

Writing in a recent blog, he notes that, “The COVID-19 lockdown shut branches, forcing customers online; in fact, it is estimated that 35% of customers have increased their online banking usage during the pandemic… Customers that have grown accustomed to the speed and convenience of online banking are unlikely to revert to call centres or go back to using an agent or a branch to the same extent as they did previously.”

At the same time, banking employees who had been working on secure corporate infrastructure at banking premises became suddenly spread across thousands of far more vulnerable home office locations.

Anstee clarifies: “In the US, for example, Bank of America and Wells Fargo transitioned more than 150 000 employees – or roughly 70% of their workforce – to work from home. And in the UK, Nationwide moved 98% of its workers to work from home in the space of just five days.”

And this fact comes with a warning: “It’s unlikely that tens of thousands of workers can be redeployed within a few days without a few security issues being overlooked in the process.”

Predictably, threat actors around the globe were quick to take advantage of the sudden requirement to move employees into remote working arrangements. Distributed denial of service (DDoS) attacks crossed the 10 million mark during 2020. For the first time in history, as reported by NETSCOUT’s ATLAS Security Engineering and Response Team (ASERT), more than 10 million DDoS attacks took place in a single year, showing how much the COVID-19 pandemic had assisted the activities of threat actors.

DDoS attacks occur when threat actors try to disrupt normal traffic to the enterprise by overwhelming the target with a flood of Internet traffic, at volumes that the system cannot handle. In this way, genuine users cannot gain access.

Similar risks in Africa

Returning specifically to financial services, South Africa is internationally recognised as having a sophisticated financial services sector, which is backed by a sound regulatory and legal framework. It is also becoming a target for cybercriminals.

Risna Steenkamp, general manager: ESM Division at value-added distributor Networks Unlimited, clarifies, “As with international financial services players, key local banks in South Africa were also well on their way with their digital transformation journeys before the pandemic struck. This is outlined, for example, in information from Standard Bank in 2020[1] on steps taken to help the bank deliver a faster time-to-market on products and services, while ensuring its IT infrastructure was optimised; as well as by Absa’s digital transition, which came about as a result of its separation from Barclays from 2017 to 2020[2], and which, reports the bank, created new opportunities for Absa, particularly around the use of big data to build its customer intelligence and experience offering.


Risna Steenkamp.

“Last year, our local financial services had to make their own quick adjustments to the new world order. However, having to move swiftly to keep working during the initial hard lockdown in March 2020 did not help with an already difficult security situation.”

In 2020, Irish multinational consulting firm Accenture released a report entitled: Insight into the Cyberthreat Landscape in South Africa[3] that revealed a pronounced spike in cyber-attacks in 2019, with all sectors being hit by cybercriminals.

Steenkamp notes, “The report outlined that South Africa had the third-highest number of cybercrime victims globally for the reported period, translating into losses of around R2.2 billion in cyber-attacks. I imagine that once the data for 2020 has come in, the figures will continue to paint a dismal picture. For example, we know already that local financial services companies PPS and Momentum Metropolitan came under cyber-attacks during 2020 and 2021[4], as did consumer credit reporting company Experian[5].

“It all speaks to the imperative need for cybersecurity across all sectors and banks, with their access to critical personal information, will only survive if they are able to protect their customers’ security details while also operating top-quality customer service. This is as true whether they are interfacing with their customers in a bricks-and-mortar or a virtual scenario.”

According to Anstee, the reactive changes that took place across the globe last year have had huge implications for the financial institutions involved, both from a service assurance and a security perspective.

He explains, “The key objective of IT and business leaders now must be to ensure the reliable delivery of mission-critical business services. Financial services institutions cannot function effectively in this new normal unless their customer-facing applications and virtualised business processes can operate reliably and securely across wired and wireless environments. With cybercriminals enthusiastically exploiting pandemic vulnerabilities, the need for advanced automated DDoS technology is clear.

“Meanwhile, service assurance requirements mean that companies must test and monitor new digital transformation projects over both wired and wireless networks – during and after deployment – to assure a quality user experience. It also requires that companies establish baseline service response times for new and existing services and introduce rapid service triage to reduce the time it takes to identify and remediate any vulnerabilities. Ideally, customised analytics would provide key insights into all business-critical applications and services.”

NETSCOUT is distributed throughout Africa by Networks Unlimited.

Networks Unlimited Africa, Janco Taljaard, +27 11 202 8400, janco.taljaard@nu.co.za, www.networksunlimited.africa

[1] https://www.standardbank.com/sbg/standard-bank-group/whats-happening/newsroom/Standard-Bank-accelerates-digital-journey-to-enterprise-development-with-Microsoft,-SAP

[2] https://www.news24.com/fin24/companies/financial-services/absas-split-from-barclays-as-good-as-complete-20200608

[3] https://www.accenture.com/za-en/insights/security/cyberthreat-south-africa

[4] https://www.businessinsider.co.za/pps-hit-by-cyber-attack-report-2021-3

[5] https://mybroadband.co.za/news/security/365838-experian-data-breach-personal-data-of-millions-of-south-africans-found-online.html?utm_source=BusinessTech&utm_medium=SponsoredArticle&utm_term=February2021




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Banking on surveillance, AI and analytics
Issue 3 2021, Cathexis Technologies , Financial (Industry)
CathexisVision video surveillance capabilities and smart video analytics help detect and cut fraud-based events and their resulting losses as well as facilitate the gathering of business- and consumer-related intelligence.

Read more...
One lock to rule them all?
Issue 3 2021, ASSA ABLOY South Africa, Technews Publishing , Financial (Industry)
eCLIQ is a multi-layered locking system which combines key-operated mechanical and electronic protection through a range of high-security cylinders and padlocks for applications beyond doors.

Read more...
Secure end-to-end fintech solutions for SA retail industry
Issue 3 2021 , Financial (Industry)
The Connect Group offers a range of fintech solutions, from cash management through to touchless payment and access to finance in 24 hours or less.

Read more...
Physical access solutions for banks
Issue 3 2021, Turnstar Systems , Financial (Industry)
When one of South Africa’s fastest growing banks recently expanded into new offices in the Western Cape, they required a physical access control solution that would match regulated access with sleek looks and high quality finishes.

Read more...
Cash services with a difference
Issue 3 2021 , Financial (Industry)
Although 80% of South Africans have a bank account, most consumer transactions are still cash-based and cash usage in the economy continues to grow at an annual rate of between 6% and 10%.

Read more...
Surveillance’s role in bank branch transformation
Issue 3 2021, Axis Communications SA , Financial (Industry)
As branch transformation and fintech continues to evolve, so will the opportunities for security surveillance with artificial intelligence, cybersecurity and advanced digital technology.

Read more...
Integrated banking security solutions
Issue 3 2021, Elvey Security Technologies , Financial (Industry)
As with most security system applications, a combination of manpower, physical barriers and technology provides the best approach to the commonly recognised ‘deter, detect and defend’ philosophy.

Read more...
Cyber securing financial companies
Issue 3 2021, Galix Group , Financial (Industry)
Financial companies are constantly under attack from both physical and cyber criminals and while the physical attacks are primarily perpetrated by organised criminals and syndicates, cyber-attacks can be organised or opportunistic.

Read more...
Integrating security with financial operations
Issue 3 2020, Technews Publishing, Hikvision South Africa, Cathexis Technologies, Axis Communications SA , Financial (Industry)
Hi-Tech Security Solutions approached a number of companies to find out what they are doing to enhance the value their security technology provides to financial companies.

Read more...
Physical access you can bank on
Issue 3 2020, Turnstar Systems , Financial (Industry)
The Citadel Security Portal is designed for use in high-security installations with standard features including automatic operation as well as bullet-resistant glass.

Read more...