IT compliance & cyber security for the financial sector

The increasing use of cloud-based business solutions and the networking of data, objects and systems through complex IT infrastructures and business processes are opening up enormous opportunities for the financial sector. Information assets are increasingly becoming the basis for value creation and are a key component in achieving corporate goals.

At the same time, however, this technical change also harbours risks and offers cyber criminals new targets. As the potential for the financial sector grows, so do the opportunities for hackers: they are professionalising their tactics by developing tools and an increasing number of potential attack vectors. This is why targeted phishing attacks lead to higher success rates for attackers and greater losses for victims.

Additional pressure to act due to new regulations

Stricter laws, new regulations and stricter control of IT by supervisory authorities are also putting additional pressure on financial players to act. New regulations such as the Digital Operational Resilience Act (DORA) bring further requirements, but also aim to standardise different requirements at EU and national level and between sectors.

We take a holistic view of IT compliance and cyber security. Our teams support you throughout your digital transformation to make it secure and compliant.

Secure and compliant for the future. Get in touch with us.

Expertise by subscription: Subscribe to "KPMG IT Compliance Monitor for FS practice"

auto_stories

Ein Leitfaden zum Verständnis von DORA und ihrer Auswirkungen auf den Finanzsektor

Focus on cybersecurity: customer expectations, increasing risks and regulatory pressure as drivers

ICT Governance & ICT Risk
Tech Reg, IT Compliance & Controls
Protection
Threat Management

Your challenges

Unclear role management in ICT governance
Lack of regulatory coverage in ICT risk management
Fragmented ICT risk reporting without standards

Our solutions

Role management based on structurally resilient regulatory frameworks
Increasing coverage through the use of modern tool sets
Increasing coverage through the use of modern tool sets

Your challenges

Lack of implementation strategy for AI regulation
Unclear compliance risks due to new requirements
No reliable control system for IT risks

Our solutions

Regulatory implementability through structured GAP analyses
Centralised and platform-based compliance management
Risk-oriented control catalogues for establishing a robust ICS

Your challenges

No transparency regarding digital identities
Inadequate control of sensitive data flows
Fragmented risk management without holistic control

Our solutions

Comprehensive consideration through IAM/PAM frameworks
Integrated archiving and DLP solutions
Data-driven control through integrated risk data architecture

Your challenges

Lack of responsiveness to security incidents
No integrated protection for modern platforms
Uncertainty in dealing with AI threats

Our solutions

Real-time response through implementation frameworks for SIEM/SOAR
Securing distributed IT infrastructures, e.g. through zero trust architectures
Protecting modern threat surfaces through AI governance and pen testing

More KPMG insights for you

Die Cloud Transformation & Regulatorik in Einklang bringen

BAIT, VAIT, DORA: Studie zu Cloud Governance und Cloud Security im Finanzdienstleistungssektor

Download now

Vertikale Strahlen Blau Orange

Increased cyber threat - study confirms deceptive sense of security

Survey on IT threats, defence mechanisms, investments and risk management.

Learn more

Tent on a frozen lake

Cyber Security in der Immobilienwirtschaft

Unsere Studie vermittelt ein Bild zum aktuellen Umgang mit Cyberrisiken und Cybersicherheit in der Branche und beantwortet wesentliche Fragen.

Learn more

Klardenker

Geopolitical upheavals: third-party risk management in the current environment

This is how financial companies reduce their dependence on providers and remain capable of acting.

Learn more

People in virtual space

Klardenker

Why AI in the financial sector now needs careful governance

Traditional IT models fall short when it comes to controlling AI.

Learn more

Two people at the desktop

Klardenker

Low-code for information registers: How to achieve DORA compliance.

From concept to implementation: a modern approach to sustainable IT compliance

Learn more

Identity security: Greater security in the cloud

KPMG expert Christian Nern in conversation with Michael Kleist (Area Vice President Sales, DACH region, CyberArk)

Watch video now

fingerprint scanner

Further publications for download

2024 ECB Cyber Stress Test

The Stress Test is used to assess the digital operational resilience of core banking systems to withstand a severe but plausible cyberattack.

Download

Digital Operational Resilience Act (DORA)

Ensuring digital resilience through increased responsiveness

Download

New reporting requirements in third-party risk management

Key learnings and takeaways regarding the information register

Download

Webcast-Serie "IT-Compliance Update"

in German language only

cast

Unterlagen des Webcasts vom 03. Juni 2022

Jetzt Webcast-Unterlagen abrufen

Archive of issues with German-language webcast documents available for download:

Your contacts

Vaike Metzger

Partner, Financial Services, Solution Lead IT Compliance & Cyber Security

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

Christian Nern

Partner, Financial Services, Head of Cyber Security Solution

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

Nadine Schmitz

Partner, Financial Services

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

Peter Hertlein

Partner, Financial Services, IT Compliance & Cyber resilience

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

julian alexis wolff

Julian Alexis Wolff

Partner, Financial Services

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

Florian Göltl

Partner, Financial Services

KPMG AG Wirtschaftsprüfungsgesellschaft

mail
call

We make the difference for financial service providers

From strategy to implementation: we support your transformation

How we make the difference

Video-Collage