From Compliance to Culture: Building Human-Centric Cyber Resilience in Finance A Leadership Discussion for EMEA Financial Institutions
Stop Checking Boxes, Start Changing Behavior How EMEA Financial Leaders Are Building Cyber Resilience That Actually Works
The finance and banking sector remains one of the most aggressively targeted industries in the cyber threat landscape, with attacks accounting for 18% of incidents across Europe and a striking 61% in the Middle East and Africa, making this a truly regional concern. While regulatory frameworks like DORA and NIS2 are driving increased investment in technology, our recent research reveals a critical gap: nearly one-third of employees remain vulnerable to phishing attacks before receiving adequate security awareness training.
This exclusive webinar brings together IT Leaders and CISOs from across the EMEA finance sector to explore why technology alone cannot solve the cyber resilience challenge. Drawing on insights from our comprehensive Cyber Risk in Finance and Banking report, we'll examine how leading institutions are shifting from compliance-driven approaches to embedding a proactive security culture that addresses the human element of cyber risk.
Join us to discover practical strategies for building organisational resilience through effective security awareness training, strengthening cloud email defences, and creating a security-first culture that empowers employees to become your strongest line of defence against increasingly sophisticated threats.
Key Discussion Points
1. The Reality Check: Why the Human Element Remains Your Greatest Vulnerability
The finance and banking sector remains one of the most aggressively targeted industries in the cyber threat landscape, with attacks accounting for 18% of incidents across Europe and a striking 61% in the Middle East and Africa, making this a truly regional concern. While regulatory frameworks like DORA and NIS2 are driving increased investment in technology, our recent research reveals a critical gap: nearly one-third of employees remain vulnerable to phishing attacks before receiving adequate security awareness training.
This exclusive webinar brings together IT Leaders and CISOs from across the EMEA finance sector to explore why technology alone cannot solve the cyber resilience challenge. Drawing on insights from our comprehensive Cyber Risk in Finance and Banking report, we'll examine how leading institutions are shifting from compliance-driven approaches to embedding a proactive security culture that addresses the human element of cyber risk.
Join us to discover practical strategies for building organisational resilience through effective security awareness training, strengthening cloud email defences, and creating a security-first culture that empowers employees to become your strongest line of defence against increasingly sophisticated threats.
Key Discussion Points
1. The Reality Check: Why the Human Element Remains Your Greatest Vulnerability
- Understanding the baseline Phish-prone™ Percentage in finance: why 34.6% of employees click on phishing simulations before training
- How threat actors are exploiting the intersection of digital transformation and human behaviour
- Real-world case studies from the report: from Deutsche Bank's third-party breach to Viamedis' phishing compromise affecting 33 million citizens
- The cost of human error: €4.77 million average breach cost and the reputational impact on financial institutions
2. Beyond Tick-Box Compliance: Transforming Security Awareness into Strategic Advantage
- The sobering reality: only 4% of financial entities have fully integrated DORA into operations
- Why traditional compliance approaches are failing to reduce risk
- Data-driven results: How consistent security awareness training reduces phishing susceptibility by 90% within 12 months
- Moving from annual training exercises to continuous, adaptive learning programmes that reflect real-world attack patterns
3. Cloud Email Security: Defending Your Primary Attack Vector
- Email as the gateway: why 30% of breaches in finance start with phishing and spearphishing attachments
- The evolving threat landscape: AI-generated phishing content, deepfakes, and Business Email Compromise (BEC) targeting the finance sector
- Implementing intelligent anti-phishing systems that work in tandem with human awareness
- Balancing user experience with security: protecting employees without creating friction in daily operations
4. Building a Security-First Culture: From the Boardroom to the Front Line
- Securing executive buy-in: making cybersecurity a strategic business priority, not just an IT concern
- Creating clear accountability: 82.4% of banks view cyber risk as their primary operational concern—but is leadership acting accordingly?
- Personalised, role-based training approaches for different departments and risk profiles
- Measuring what matters: moving beyond completion rates to behavioural change and sustained resilience
5. The Third-Party Dilemma: Extending Your Security Culture Beyond Your Walls
- The cascading risk: 96% of Europe's top 100 financial institutions experienced a third-party ecosystem breach in 2024-2025
- Why 65% of financial services leaders identify third-party management as their greatest capability weakness
- Strategies for embedding security expectations and awareness requirements into vendor relationships
- Creating collaborative threat intelligence sharing networks within your supply chain
- DORA compliance: Extending resilience requirements through your vendor relationships"
6. The Path Forward: Integrating People, Process and Technology
- Why cybersecurity-by-design must include human factors from the start
- Aligning security awareness programmes with DORA resilience testing requirements
- The sustainable approach: maintaining 3.1% PPP rates over multiple years
- Creating a resilience framework that addresses both technical vulnerabilities and human behaviour
- 2026 and beyond: Preparing for emerging threats: AI-driven attacks and the next generation of social engineering
- Building board confidence: Demonstrating measurable progress on the #1 operational risk concern"
Who Should Attend:
IT Leaders, CISOs, Chief Risk Officers, Heads of Information Security, Compliance Directors, and senior decision-makers responsible for operational resilience in EMEA financial institutions.
Поставщик: KnowBe4 Germany GmbH | Язык: Английский