Just before Christmas 2021, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) announced that serious vulnerabilities had been detected in the widely used Java-based software known as Log4j, sending the entire online community into a virtual panic. And with people still working remotely from home and outside offices, there’s no reason to believe these online threats won’t continue or even increase in the coming year.
But an important thing to remember is: For every one of these attacks that makes the morning headlines and the nightly news, there are a growing number of attacks that occur every day — and exponentially more unsuccessful attempts to find holes and compromise the online security for everything from infrastructure to supply chain to financial institutions. “Corporate networks are being targeted on a daily basis,” says Jason Dutchak, Director for BankOnIT. “What’s important is that you are diligent about preventing these events and having solid plans for the worst-case scenarios.”
For BankOnIT, this starts from the beginning, with network design – both ours and that of each one of our clients. BankOnIT incorporates cybersecurity into everything we do. “Cybersecurity is not something you can bolt on,” says Dutchak “it has to be intentionally designed and incorporated at every level.” It’s this intentional design that provides the financial institutions we serve with the reliability, security, and regulatory compliance they require.
Many times, a “trial and error” or “learn on the job” approach is taken with technology. While that may be fine for industries that are not mission-critical and have less regulatory oversight, it can be a risky and costly approach for financial intuitions. “One analogy that comes to mind is commercial aviation in the United States,” says Dutchak. “The safety record of commercial airlines in the United States has improved dramatically over the past 50 years and is unmatched anywhere else in the world. In large part, processes, systems, and regulations are responsible.” Whether it is the mechanic, the pilot, the flight attendant, or air traffic control, each individual is applying a consistent and proven process for each flight. Any changes are well thought out, tested, and reviewed prior to implementation. BankOnIT uses a similar approach to ensure a consistently desirable outcome for client institutions.
It’s clear as we enter 2022 that cyberattacks will continue and likely with more frequency and sophistication. But the most important thing to remember is not to panic. Just as cybercriminals are evolving, so too are the tools and expertise employed to stop them and bring them to justice. BankOnIT is constantly monitoring, building defenses, and countering attacks so that you can focus on the business of banking. Working together, let’s make this year is a prosperous and safe one.