Shuang Wang , Muhammad Asif , Muhammad Farrukh Shahzad , Muhammad Ashfaq
{"title":"Data privacy and cybersecurity challenges in the digital transformation of the banking sector","authors":"Shuang Wang , Muhammad Asif , Muhammad Farrukh Shahzad , Muhammad Ashfaq","doi":"10.1016/j.cose.2024.104051","DOIUrl":null,"url":null,"abstract":"<div><p>In the digital transformation of the banking sector, incorporating advanced technologies such as cloud computing, big data analytics, artificial intelligence, and blockchain has revolutionized financial services. However, this rapid digitalization brings significant data privacy and cybersecurity challenges. This study investigates the challenges banks have maintaining data privacy and cybersecurity while implementing new technologies, how they perceive these challenges, and what steps they take to reduce the risks involved. This qualitative study uses thematic analysis to examine interviews conducted with IT specialists in the banking sector. NVivo 14 software is employed to identify key themes and patterns related to the challenges, perceptions, and strategies regarding data privacy and cybersecurity in technology adoption. The findings reveal that the primary challenges faced by banks include integrating legacy systems, evolving compliance management, managing vendor risks, maintaining customer confidence, and mitigating emerging risks. Banks perceive robust data privacy and cybersecurity as critical for competitive advantage, regulatory compliance, and customer trust. Strategies include robust access controls, continuous threat monitoring, employee training, regulatory compliance with governance frameworks, and data encryption. This study provides original insights into the specific challenges and strategies related to data privacy and cybersecurity faced by banks. It contributes to the existing literature by highlighting the unique context of the banking sector and employing qualitative analysis to uncover nuanced perceptions and practices of IT specialists.</p></div>","PeriodicalId":51004,"journal":{"name":"Computers & Security","volume":null,"pages":null},"PeriodicalIF":4.8000,"publicationDate":"2024-08-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers & Security","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0167404824003560","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 0
Abstract
In the digital transformation of the banking sector, incorporating advanced technologies such as cloud computing, big data analytics, artificial intelligence, and blockchain has revolutionized financial services. However, this rapid digitalization brings significant data privacy and cybersecurity challenges. This study investigates the challenges banks have maintaining data privacy and cybersecurity while implementing new technologies, how they perceive these challenges, and what steps they take to reduce the risks involved. This qualitative study uses thematic analysis to examine interviews conducted with IT specialists in the banking sector. NVivo 14 software is employed to identify key themes and patterns related to the challenges, perceptions, and strategies regarding data privacy and cybersecurity in technology adoption. The findings reveal that the primary challenges faced by banks include integrating legacy systems, evolving compliance management, managing vendor risks, maintaining customer confidence, and mitigating emerging risks. Banks perceive robust data privacy and cybersecurity as critical for competitive advantage, regulatory compliance, and customer trust. Strategies include robust access controls, continuous threat monitoring, employee training, regulatory compliance with governance frameworks, and data encryption. This study provides original insights into the specific challenges and strategies related to data privacy and cybersecurity faced by banks. It contributes to the existing literature by highlighting the unique context of the banking sector and employing qualitative analysis to uncover nuanced perceptions and practices of IT specialists.
在银行业的数字化转型过程中,云计算、大数据分析、人工智能和区块链等先进技术的应用为金融服务带来了革命性的变化。然而,这种快速数字化带来了数据隐私和网络安全方面的巨大挑战。本研究调查了银行在实施新技术的同时,在维护数据隐私和网络安全方面所面临的挑战,银行如何看待这些挑战,以及银行采取了哪些措施来降低相关风险。本定性研究采用主题分析法对银行业的 IT 专家进行访谈。研究采用了 NVivo 14 软件,以确定与采用技术过程中数据隐私和网络安全方面的挑战、看法和策略有关的关键主题和模式。研究结果表明,银行面临的主要挑战包括整合遗留系统、不断发展的合规管理、管理供应商风险、维护客户信心以及降低新出现的风险。银行认为,强大的数据隐私和网络安全对于竞争优势、合规性和客户信任至关重要。采取的策略包括强大的访问控制、持续的威胁监控、员工培训、监管框架的合规性以及数据加密。本研究对银行面临的与数据隐私和网络安全有关的具体挑战和策略提出了独到见解。它强调了银行业的独特背景,并采用定性分析揭示了 IT 专家的细微看法和做法,为现有文献做出了贡献。
期刊介绍:
Computers & Security is the most respected technical journal in the IT security field. With its high-profile editorial board and informative regular features and columns, the journal is essential reading for IT security professionals around the world.
Computers & Security provides you with a unique blend of leading edge research and sound practical management advice. It is aimed at the professional involved with computer security, audit, control and data integrity in all sectors - industry, commerce and academia. Recognized worldwide as THE primary source of reference for applied research and technical expertise it is your first step to fully secure systems.