Bank cyber chiefs at odds over risk models

Vast scope of threats makes modelling unfeasible, say practitioners

Cyber protection — Not so easy: can risk models ever accurately capture cyber risk?

Steve Marlin
20 Jul 2017

Tweet
Facebook
LinkedIn
Save this article
Send to
Print this page

An old business adage holds that ‘you can’t manage what you can’t measure’. This is especially apposite in risk management. Banks have spent several decades and billions of dollars developing models to estimate potential losses from market and credit risks, but many chief information security officers (CISOs) confess to being unable to measure their exposure to cyber risk with anything like the same degree of accuracy.

“Wouldn’t it be great if CISOs had something like credit risk [modelling], w

To continue reading...

Sign In

More on Risk management

Improved credit loss estimates proposed for IFRS 9

25 Sep 2018

Nasdaq slow to share defaulter info with peer CCPs

21 Sep 2018

Danske admits ‘major deficiencies’ in money laundering case

20 Sep 2018

Do two sizes fit all? Banks aim to standardise vendor risk

20 Sep 2018

Spotlight on auction in €114m Nasdaq clearing blow-up

19 Sep 2018

Cyber security begins a shift to the risk department

19 Sep 2018

Lehman’s ghost: how three CCPs anchor models to crash

17 Sep 2018

Swift user break-ins a ‘repeat business’ for hackers

16 Sep 2018

7 days in 60 seconds

CCPs, handling default, and cyber risk

The week on Risk.net, September 15–21, 2018

Receive this by email

Most read on Risk.net

Back to Top

You need to sign in to use this feature. If you don’t have a Risk.net account, please register for a trial.

You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

.

Alternatively you can request an indvidual account here: