Sopra Steria finds UK citizens want more secu... » London: Sopra Steria has revealed that UK citizens are keener than ever to use digital public servic... World’s top education experts to answer key q... » Education experts, Edtech entrepreneurs and an assortment of thinkers, analysts and administrators f... HAUD gives more value through its Traffic Audit ... » Singapore: HAUD has now established itself as a market leading SMS firewall provider, and through ex... 365squared launches 365analytics » Macau, China: 365squared introduced 365analytics to its portfolio of services. 365analytics is a rea... Checkpoint Systems deploys its EAS Solutions at ... » Checkpoint Systems has announced its partnership in implementing EAS pedestals and deactivation syst... Evander Direct wins commendation for uPVC window... » Evander Direct have been commended for their innovative uPVC cleaning process that dramatically help... Electrical Industries Charity to benefit from pr... » Thousands of pounds are set to be raised for good causes in the electrotechnical industry at the upc... Secure I.T. Environments achieves new internatio... » Data Centre World, London: Secure I.T. Environments Ltd has announced that it has achieved new inter... OKI upgrades wide format with new Teriostar Multif... » Egham: OKI Europe Ltd has launched two new wide format Teriostar multifunction printers designed to ... BSIA members push aggressively for cyber-security ... » BSIA members have pledged to lead the way in cyber-security education, Vigilance can report.

CLICK HERE TO

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Case Studies

‘73% Risk & Compliance Managers in Financial Sector Admit They’re Not Aware of Penalties of up to 5 Million Euros or 10% of Annual Turnover vs 58% of IT Managers and Decision Makers’

Oxford: A study of IT managers and decision makers and Risk & Compliance managers within UK financial services businesses, reveals a lack of preparation and understanding of the requirements of MiFID II legislation due to come into force in January 2018.

The study, carried out in January 2017 for voice security services company Aeriandi, shows managers and decision makers within these institutions have little understanding of the severity of potential penalties and are struggling to apply the legislation to their businesses.

Key findings

Almost three quarters (73%) of Risk & Compliance managers in Financial Sector admit they’re not aware of penalties of up to 5 million euros or 10 per cent of annual turnover vs only 58 per cent of IT managers and decision makers

17 per cent of Risk & Compliance managers are unaware a company could receive a cease and desist order for non-compliance

Almost a quarter of those surveyed (22%) say that, although they feel they understand the MiFID II legislation, they are not sure how it applies to their organisation

Over a quarter (29%) do not yet have the technology or the infrastructure needed in place for compliance

Only 10 per cent are currently communicating with partners and suppliers about their preparations for compliance with MiFID II

The study highlights a concerning gap between general awareness and understanding of the legislation and an understanding of the practical detail, knowledge and planning that is needed to prepare for compliance.

Understanding of the legislation peaks in firms with 50,001 – 100,000 employees, with 88 per cent saying they are totally confident in their understanding of the legislation.  It then falls sharply to 67 per cent in organisations with 100,001 – 150,000 employees, and again to 65 per cent in companies with 150,001+ employees.

When comparing the responses of IT professionals and those responsible for managing Risk & Compliance within a business, IT teams have a better overall understanding of the consequences of non-compliance.  62 per cent of Risk & Compliance managers admitted to not knowing a company can be fined up to 5 million euros or 10 per cent of annual turnover, compared to only 42 per cent of IT managers and decision maker’s.

It would appear however that a countdown to compliance has begun and organisations are now starting to invest time and money in preparations.  30 per cent of respondents say that budget has been allocated this year to help with preparations, and over a third (36%) report that policy and procedure have now been developed.

Matt Bryars, co-founder and CEO at Aeriandi, commented: “There appears to be a real lack of detailed knowledge around MiFID II in UK financial services organisations.  With less than a year to go until penalties for non-compliance will kick in, you’d hope that those responsible for delivering compliance – the IT and risk & compliance teams – would have this nailed.  However, for many, preparations are still at a very early stage.

“Organisations must understand the key areas of impact on their business and start to plan for change.  For example, call recording requirements under MiFID II will become mandatory for all areas of financial advice.  So anyone making a call in which they recommend products or aim to make a transaction will have to record that call – and then keep that recording secure for five years.  Ultimately compliance and IT teams will have their work cut out for them   They’ll need to carry out a detailed risk analysis, mapping out the required processes and procedures required under MiFID II, and then determine task by task if their existing solutions will be adequate or if the organisation finds it needs to procure and roll out a new set of tools and supporting processes."