Factoring Security Into Data Governance
During this week's European Financial Information Summit (EFIS), answers to one of the questions posed in last week's column previewing the conference emerged in discussions ostensibly about other concerns.
I had asked whether centralization or outsourcing to implement data governance strategies would be better or more advantageous for firms. Panelists discussing the current regulatory landscape arrived at some answers concerning data governance as part of their discourse—as did an EFIS keynote speaker focused on cyber security and protecting data.
Jacob Gertel, senior project manager for legal and compliance data at SIX Financial Information, observed that to comply with US Fatca tax withholding and reporting law, and work with the Common Reporting Standard (CRS) used for Fatca reporting, the data that financial intermediaries must deliver is based on data files from their customers. As a result, this data, with its relevance for regulatory compliance, has greater value than it might otherwise. And, Gertel says, SIX seeks ways to make the data available to users without having to set up all new structures for management and distribution.
Fatca or CRS-relevant data is increasing in volume, and resembles the type of "big data" that Dan Crisp, managing director, EMEA, information risk management at BNY Mellon, says needs protection from cyber invasion. "We have gone to a super-abundant world of data," he says. "Conceptualizing data, unless you are a deep subject matter expert, is quite challenging. We have data growing exponentially, bigger and bigger challenges with metadata and visualization-and getting that across to people who may not be familiar with the details."
The European Union's Cybersecurity Strategy and the European Commission's Directive on Network and Information Security, now in place, was a long-shot for passage a year ago, Crisp notes. There is a social element to data, namely the possibility that hackers can use social engineering to gather information on data users and deceive them through social familiarity to gain access, Crisp says. Along with the EU directive, regulators in European nations want firms to demonstrate what systems and organization they have in place, for data protection.
It may seem contradictory to the goal of making data more available for distribution, as Gertel discussed, but the cyber security directive is requiring firms to know what their IT partners or vendors are doing about data security. "We all understand that there's speed to market challenges, and speed of compliance challenges, from regulators; and global regulations are becoming increasingly strict requirements," says Crisp.
So, if your firm is in the middle of deciding whether to centralize or outsource data management, and is considering how to write data governance plans accordingly, the data security issues Crisp raises are also something that has to be figured into that process. That's an unexpected answer to the data governance question, but a valid one.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: http://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@waterstechnology.com
More on Data Management
Waters Wavelength Podcast: Bloomberg’s Tony McManus
Tony McManus, global head of enterprise data division at Bloomberg, joins the podcast to talk about the importance of data in the context of AI and GenAI.
Putting the ‘A’ in CDO: The rise of the chief data and analytics officer
As data and analytics become more intertwined, banks and vendors are creating a new role—the chief data and analytics officer—to help them take advantage of the opportunities it presents. It may sound easy, but rethinking data can be a gargantuan task.
The IMD Wrap: Talk about ‘live’ data, NAFIS 2024 is here
This year’s North American Financial Information Summit takes place this week, with an expanded agenda. Max highlights some of the must-attend sessions and new topics. But first, a history lesson...
Waters Wavelength Podcast: S&P’s CTO on AI, data, and the future of datacenters
Frank Tarsillo, CTO at S&P Global Market Intelligence, joins the podcast to discuss the firm’s approach to AI, the importance of data, and what might be in store for datacenters in the coming years.
Breaking out of the cells: banks’ long goodbye to spreadsheets
Dealers are cutting back on their use of Excel amid tighter regulation and risk concerns.
BMO’s cloud migration strategy eases AI adoption
The Canadian bank is embracing a more digital future as its cloud strategy makes gains and it looks to both traditional machine learning and generative AI for further augmentation.
Waters Wrap: GenAI and rising tides
As banks, asset managers, and vendors ratchet up generative AI experiments and rollouts, Anthony explains why collaboration between business and tech teams is crucial.
People Moves: NorQuant, Tradition, Duco, HKEx, SimCorp, Hazeltree, Xceptor, Broadridge, and more
A look at the past month’s people moves in the capital markets technology and data space.
Most read
- Waters Wavelength Podcast: S&P’s CTO on AI, data, and the future of datacenters
- Chris Edmonds takes the reins at ICE Fixed Income and Data Services
- DTCC urges affirmation focus ahead of T+1 move