Report: Financial Institutions Struggle to Keep Pace with Cumbersome Audit Processes
Independent research reveals 96% of IT security professionals believe that the tools their organization uses to collect security data could do with some improvement
ASHBURN, Va., Dec. 08, 2021 (GLOBE NEWSWIRE) — Telos® Corporation, a leading provider of cyber, cloud and enterprise security solutions for the world’s most security-conscious organizations, today released new findings from research conducted by independent research firm Vanson Bourne that examines how financial services are faring with the ever-increasing challenge of audit overload.
The study, which surveyed 200 U.S. IT security professionals in the financial services industry, revealed that nearly all (97 percent) financial institutions experience challenges when working on audits. While these challenges clearly impact the overall audit process, they also have implications for the IT security team members themselves. Just over three-quarters (78 percent) of surveyed IT security professionals in 2020 reported that they personally dread when their organization is audited. This figure has risen to 95 percent in 2021.
Key findings from the report include:
- Financial organizations spend an average of 71 working days each quarter responding to audit evidence requests, have an average of 13 different IT security compliance and privacy regulations with which they must comply, and have an average of 54 dedicated people who work on IT security compliance and/or privacy regulations.
- In 2021, 45 percent of organizations experienced employee sickness due to stress-related illness and 36 percent reported employee dissatisfaction, as compared to 34 percent and 19 percent, respectively, in 2020.
- While the majority (64 percent) of financial organizations use commercial governance, risk and compliance (GRC) solutions; IT GRC solutions; or IT risk management products, nearly half (47 percent) use a custom solution and over a third (37 percent) are still using spreadsheets to manage their compliance processes.
- 96 percent of IT security professionals believe that the tools their organization uses to collect security data could be improved in order to fully meet their needs – data aggregation and interpretation is something that 76 percent find particularly difficult.
“With the audit process continually increasing in complexity, the importance of tools that ease the process of aggregating and interpreting security data is more critical than ever,” said Rick Tracy, CSO and senior product manager at Telos. “With a new year quickly approaching, it’s time for organizations to rethink the current toolbox being used in their audit process by embracing automation, streamlining workflows and employing capabilities that bring the entire security compliance operation into perspective.”
With the average number of IT assets and cloud resources being monitored by financial organizations at any given time reaching just over two million, and with institutions running an average of 209 security control tests each month – of which only an average of 53 percent are automated – it is time to rethink the process.
“For organizations to streamline workflows and get ahead when it comes to audits, they need to implement processes that will accelerate audit activities and pull together massive amounts of compliance data in a concise and meaningful way,” said Tracy. “This will relieve the pressure on staff, free up necessary resources and ultimately make audits efficient and more accurate.”
For additional findings and to download the full report, visit https://www.telos.com/next-step/revisiting-the-harsh-reality-of-audit-fatigue-how-financial-services-are-faring-in-2021.
Methodology
Telos commissioned independent research firm Vanson Bourne to conduct the 2021 financial services audit fatigue research. The study surveyed 200 U.S. IT security professionals in August and September 2021. All respondents were from financial services organizations with 1,000 or more employees.
About Telos Corporation
Telos Corporation (NASDAQ: TLS) empowers and protects the world’s most security-conscious organizations with solutions for continuous security assurance of individuals, systems, and information. Telos’ offerings include cybersecurity solutions for IT risk management and information security; cloud security solutions to protect cloud-based assets and enable continuous compliance with industry and government security standards; and enterprise security solutions for identity and access management, secure mobility, organizational messaging, and network management and defense. The company serves commercial enterprises, regulated industries and government customers around the world.
About Vanson Bourne
Vanson Bourne is an independent specialist in market research for the technology sector. Their reputation for robust and credible research-based analysis is founded upon rigorous research principles and their ability to seek the opinions of senior decision makers across technical and business functions, in all business sectors and all major markets. For more information, visit www.vansonbourne.com.
Media:
Mia Wilcox
[email protected]
(610) 564-6773
Investors:
Tom Phillips
[email protected]
Disclaimer: This content is distributed by The GlobeNewswire