Risk
3/14/2012
12:51 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Legacy Infrastructure Will Fail To Meet Regulatory Compliance Objectives, Say Over 70% Of Banking And Insurance Professionals

Interxion research is focused on the impact of anticipated regulation of the financial services industry

AMSTERDAM - 14 March 2012 - INTERXION HOLDING NV (NYSE: INXN), a leading European provider of carrier-neutral colocation data centre services, today announced the results of an independent study and whitepaper by financial industry think-tank, JWG. The research is focused on the impact of anticipated regulation of the financial services industry on the ICT infrastructure requirements of banking and insurance firms across Europe.

The research - based on interviews with select industry practitioners, a pan-European industry survey of IT decision makers within banking and insurance firms and a review of more than 4,000 pages of regulation stipulated by the G20 in the aftermath of the financial crisis. These include the implementation of new capital requirements, as defined by Basel III and Solvency II, and reforms such as MiFID II and the European Market Infrastructure Regulation (EMIR) that will significantly affect firms’ systems, controls, reporting and record keeping ability. These regulations require major upgrades starting in 2012 and rippling across industry sectors for the rest of the decade.

The study found that a massive 71% of respondents did not believe that legacy system upgrades required to meet compliance objectives would be complete by the required implementation date in 2015, while an overwhelming 90% stated that penalties for non-compliance by the end of this year will run into the tens of millions of dollars.

With 40% of respondents saying they lacked confidence in the ability of their overall ICT infrastructure to comply with upcoming regulations, 30% said they would need third-party data centres to fulfil compliance and security requirements, whilst also being able to reduce operational risk capital buffers.

PJ Di Giammarino, CEO, JWG said: “Many financial institutions are trying to run services on disparate systems whose complexity and inflexibility make it difficult to respond to regulatory demands. But non-compliance could lead to significant fines or even cost firms their licence to practice.”

He added: “The accountability for compliance will most likely lie with IT and operations, but there is no evidence that they are engaging with the regulators to set the right standards. There is a clear disconnect between infrastructure practitioners and compliance experts which needs to be resolved fast if firms want to maintain their competitive advantage as well as comply.”

Kevin Dean, Chief Marketing Officer, Interxion commented: “The impact of the G20 regulatory reform on financial institutions’ ICT infrastructure requirements will be significant and it is clear that firms need to invest in the ‘correct’ technology. Building internal data centres is no longer an option for many firms due to capital restraints emanating from Basel III and Solvency II and the prevalence of legacy systems. Therefore banks and insurers are increasingly re-thinking their data centre strategies and considering the externalisation of their facilities.”

He added: “This research from JWG highlights the role suppliers can play in better supporting industry requirements and in helping banks and insurance firms navigate the vast terrain of legislation. Interxion is committed to understanding the impact of regulation on our customers in detail and to offering the appropriate solutions.”

Interxion data centres provide fully compliant professional environments for mission-critical business applications, offering the stringent levels of security, reliability and performance required by the financial services industry. They also allow financial institutions to avoid investment in non-core activities without relinquishing control over ICT systems and processes.

The full research findings will be presented by JWG and discussed with a panel of industry experts at a seminar in London on 22 March and a webinar on 29 March. Banking and insurance industry professionals can register for these events free-of-charge.

About Interxion

Interxion is a leading provider of carrier-neutral colocation data centre services in Europe, serving over 1,200 customers through 28 data centres in 11 European countries. Interxion’s uniformly designed, energy-efficient data centres offer customers extensive security and uptime for their mission-critical applications. With connectivity provided by more than 400 carriers and ISPs and 18 European Internet exchanges across its footprint, Interxion has created content and connectivity hubs that foster growing customer communities of interest. For more information please visit www.interxion.com.

About JWG

JWG works with regulators, financial institutions and technology firms as the independent analysts to help determine how the right regulations can be implemented in the right way. JWG are unique. Their independence permits collaboration with regulatory and industry bodies, financial institutions and technology firms without serving the interests of any constituent over another. For more information please visit www.jwg-it.eu.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

CVE-2014-3991
Published: 2014-07-11
Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote attackers to inject arbitrary web script or HTML via the (1) dol_use_jmobile, (2) dol_optimize_smallscreen, (3) dol_no_mouse_hover, (4) dol_hide_topmenu, (5) dol_hide_leftmenu, (6) mainmenu, or (7) leftmenu pa...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.