Sick to the back teeth of telling organisations to patch their software, or to stop using “p@ssword” as their password – the UK’s financial regulators have called on firms to “consider the underlying causes of cyber risk.”

That should include “analysing systemic gaps, such as poor asset management, weak identity controls, or inadequate third-party oversight.”

Efforts to “enhance maturity” across governance frameworks, and improved “mapping of long-term capabilities” would also be welcome, a trio of market watchdogs said, publishing industry penetration testing findings. 

Get the full story: Subscribe for free

Join peers managing over $100 billion in annual IT spend and subscribe to unlock full access to The Stack’s analysis and events.

Subscribe now

Already a member? Sign in