Barclays’ cyber chief: try to break your own IT defences

Banks “must go beyond vulnerability assessments”, conference hears

Barclays' Nassiokas says banks should test physical IT security

Vulnerability assessments are good as far as they go, but banks need to go beyond them to use ethical hacking, penetration testing and red-team physical testing, delegates at the OpRisk Asia conference in Singapore heard yesterday (April 25). Theo Nassiokas, Barclays’ director of cyber security for the Asia-Pacific region, warned vulnerability assessments could only be part of a proper cyber risk assessment.

“Ethical hacking – we go way beyond that,” he said. “We don’t just do vulnerability

Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.

To access these options, along with all other subscription benefits, please contact or view our subscription options here:

You are currently unable to copy this content. Please contact to find out more.

Sorry, our subscription options are not loading right now

Please try again later. Get in touch with our customer services team if this issue persists.

New to View our subscription options


Want to know what’s included in our free membership? Click here

This address will be used to create your account

You need to sign in to use this feature. If you don’t have a account, please register for a trial.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an individual account here