Addressing Technology Risks within the Financial Services Industry

As rapidly as technology evolves, so does the inherent risk surrounding that technology. It has now become ever so critical to ensure appropriate mitigation strategies are constantly evaluated and overall governance is maintained at the executive and board levels. Financial institutions continuously face risk due to misalignment between business and IT strategies, management decisions and the lack of experience to support ever-changing technologies that are critical to the ongoing success of the institution. Oftentimes, financial organizations are reliant on legacy systems that may become obsolete, uncompetitive or disruptive, thus jeopardizing the security, availability and integrity of the data.

Depending on the size of the institution, mergers and acquisitions – all too common in the financial services industry – can often burden an organization’s IT environment by increasing the number of systems, applications and interdependencies (including vendors), which are frequently overlooked and under-budgeted, further increasing risk. For more on the effects of M&A, please see our OTO article, Don’t Acquire the Data Breach – The Importance of Cybersecurity and Information Technology Due Diligence.

In general, financial services executive management and boards of directors must be acutely aware when addressing risk areas, which often include:

At the end of the day, technology risks have financial, regulatory, operational, strategic and reputational implications if not addressed in a collaborative manner with board-level oversight. Members don’t have to be IT experts, necessarily, but they do need to understand how technology supports strategic initiatives so they can provide oversight and challenge management if/when required.

If you have questions on how technology risks impact your financial institution, or would like to learn more how Schneider Downs can help your organization with any of the specific risks above, we’re happy to discuss.

You’ve heard our thoughts… We’d like to hear yours

The Schneider Downs Our Thoughts On blog exists to create a dialogue on issues that are important to organizations and individuals. While we enjoy sharing our ideas and insights, we’re especially interested in what you may have to say. If you have a question or a comment about this article – or any article from the Our Thoughts On blog – we hope you’ll share it with us. After all, a dialogue is an exchange of ideas, and we’d like to hear from you. Email us at

Material discussed is meant for informational purposes only, and it is not to be construed as investment, tax, or legal advice. Please note that individual situations can vary. Therefore, this information should be relied upon when coordinated with individual professional advice.

© 2020 Schneider Downs. All rights-reserved. All content on this site is property of Schneider Downs unless otherwise noted and should not be used without written permission.

our thoughts on

Impersonation Attacks Targeting Microsoft Teams
ProLock Ransomware Attacks Overview and Mitigation Strategies
ProLock Ransomware Attacks Overview and Mitigation Strategies
How Risk Management and Internal Audit Can Add Value in Light of the Current Pandemic: COVID-19 Risk Considerations
Introducing the Schneider Downs Cybersecurity Newsletter
Ohio Unemployment Fraud Reporting Site under Attack

Register to receive our weekly newsletter with our most recent columns and insights.

Have a question? Ask us!

We’d love to hear from you. Drop us a note, and we’ll respond to you as quickly as possible.

Ask us

contact us

Map of Pittsburgh Office

One PPG Place, Suite 1700
Pittsburgh, PA 15222
p:412.261.3644     f:412.261.4876

Map of Columbus Office

65 East State Street, Suite 2000
Columbus, OH 43215
p:614.621.4060     f:614.621.4062

Map of Washington Office
Washington, D.C.

1660 International Drive, Suite 600
McLean, VA 22102