April 2015: Feeling Lucky?
Can capital markets CISOs afford to sit on their hands as cyber attacks increase in quantity and sophistication?

Given that this month's issue of Waters is dominated by a cyber security theme, it seems appropriate for me to wade in and deliver my two cents on the subject. But before I do, I state openly and unequivocally that I am no expert in this field ─ until fairly recently, for example, I labored under the misconception that a DDoS was just another acronym used to describe a sophisticated trading strategy devised by ex-investment bankers behind Connecticut- and Channel Island-based alternative trading shops. But, while my newby status in this realm is undeniable, I have, over the years, found the clandestine hacking world more than a little fascinating.
Anonymous ─ the poster boys of the hacking movement ─ caught the imagination of the world press back in January 2008 through its Project Chanology stunt, where it "attacked" the Church of Scientology through a mix of pranks and hacks. Back then, the public might have been forgiven for dismissing Anonymous as a bunch of rich kids on a US college campus with lots of time on their hands and a penchant for social and economic justice, but, over the following years, government agencies from around the world, PayPal, MasterCard, Visa and Sony found out to their considerable chagrin that what might have started out as a ragtag bunch of pranksters is now a sophisticated, well-connected and highly motivated organization.
And, for the time at least, it appears that no one is immune from their threat: In early February this year, in the wake of the Charlie Hebdo attack in Paris, Anonymous launched Operation Ice ISIS, targeting the terrorist organization behind the killings, while in October 2011 it turned its considerable resources to exposing known pedophiles operating in the shadows of the dark web when it unveiled Operation Darknet. In short, you probably don't want to give these guys a reason to target your organization.
But what does this mean for capital markets chief information security officers (CISOs) and their IT departments? Well, any CISO worth their salt will be justifiably concerned by such threats to their operating environments, disquiet that is likely to carry on down the corporate halls to IT departments tasked with, at the very least, mitigating those threats. If you're a betting CISO and you're comfortable sitting on your hands, the chances are that your organization will be fine. But would you want to take that bet?
In short, you probably don't want to give these guys a reason to target your organization.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: http://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@waterstechnology.com
More on Emerging Technologies
DeepSeek success spurs banks to consider do-it-yourself AI
Chinese LLM resets price tag for in-house systems—and could also nudge banks towards open-source models.
Standard Chartered goes from spectator to player in digital asset game
The bank’s digital assets custody offering is underpinned by an open API and modular infrastructure, allowing it to potentially add a secondary back-end system provider.
Saugata Saha pilots S&P’s way through data interoperability, AI
Saha, who was named president of S&P Global Market Intelligence last year, details how the company is looking at enterprise data and the success of its early investments in AI.
Data partnerships, outsourced trading, developer wins, Studio Ghibli, and more
The Waters Cooler: CME and Google Cloud reach second base, Visible Alpha settles in at S&P, and another overnight trading venue is approved in this week’s news round-up.
Are we really moving on from GenAI already?
Waters Wrap: Agentic AI is becoming an increasingly hot topic, but Anthony says that shouldn’t come at the expense of generative AI.
Cloud infrastructure’s role in agentic AI
The financial services industry’s AI-driven future will require even greater reliance on cloud. A well-architected framework is key, write IBM’s Gautam Kumar and Raja Basu.
Waters Wavelength Ep. 310: SigTech’s Bin Ren
This week, SigTech’s CEO Bin Ren joins Eliot to discuss GenAI’s progress since ChatGPT’s emergence in 2022, agentic AI, and challenges with regulating AI.
Microsoft exec: ‘Generative AI is completely passé. This is the year of agentic AI’
Microsoft’s Symon Garfield said that AI advancements are prompting financial services firms to change their approach to integrating AI-powered solutions.