PIMFA
Microsites
> Advisers’ Sustainability Group
> PIMFA Wealthtech
> Talent, Inclusion, Diversity & Equity
> Under 40 Leadership Committee

Cyber
security

Cyber Security

Cyber Security refers to the practices, technologies, and measures required to protect sensitive financial information, systems, and infrastructure from unauthorised access, disclosure, alteration, or destruction. It involves safeguarding firms and individuals against cyber threats such as hacking, data breaches, malware, phishing attacks, and other forms of cybercrime.

  • CYBER SECURITY WORKING GROUP

The PIMFA Cyber Security Working Group shares intelligence, explores a wide range of issues impacting our sector, and develops best practices and guidance.

Previous work includes:

  • Cyber Security Framework mapping
  • Artificial Intelligence (AI) potential impacts on cyber Security
  • Cyber Security when travelling and working from home
  • Reviews of case studies and learnings
  • Cyber Security strategies and culture

If you are interested in joining this member only group, please contact Maria Fritzsche.

View the Cyber Security Working Group

Cyber Incident Good Practice

This guide outlines possible cyber incident scenarios and how to deal with them.

Cyber Security Matters

This guide in collaboration with Mitigo outlines why cyber security should be top of your risk register

Cyber Resilience in Extraordinary Times

This guide outlines how your firm can be cyber resilient.

Cyber Attacks Trends and Reporting

This guide outlines cyber attack trends and how to report them.

Maria Fritzsche
Senior Policy Adviser - Operational Policy, Regulation and Innovation Lead

Click to expand.

latest news

Cyber Uncovered Episode Four: Inside a Social Engineering Attack: How Supply Chain Breaches Really Happen

Associate Members, Mitigo, will be hosting a webinar on Thursday 30 April. This is a practical walkthrough of how attackers use social engineering to exploit trusted relationships within your supply chain, and how this leads to real-world breaches – in the financial services sector and beyond.

In this session, Mitigo’s Head of Technical Development, Karl McAree, will walk through a real-world attack scenario, showing how attackers gather intelligence, impersonate trusted contacts and manipulate processes to gain access to organisations.

Key takeaways:

  • How attackers gather publicly available information to build a picture of your organisation and its suppliers
  • How impersonation is used to exploit trust and manipulate into sharing sensitive information
  • Why your supply chain creates multiple entry points for attackers
  • How a real-world social engineering attack unfolds – from first contact through to business impact
  • Why these attacks are so effective, even in well-run organisations
  • Practical steps to reduce risk and close the cyber gaps attackers exploit

 

Why attend? Get clarity on where your organisation is most vulnerable to supply chain attacks, and what needs to be in place to strengthen oversight and reduce risk.

Register for the webinar here.

Click here to find out more about Mitigo.

CTP regime: industry needs next steps for formal designation process

Read PIMFA’s article in the Financial Times on the CTP regime

Read Now

The Cost of Complacency: Cyber Threats Facing UK Financial Firms

Read here an article from the PIMFA Journal #32 by Kerrie Machin, Director of Business Development at Mitigo, highlighting that cybersecurity is now a battleground where complacency is no longer an option

Almost there...

Complete the quick form below to download the Membership Brochure