Helping clients meet their business challenges begins with an in-depth understanding of the industries in which they work. That’s why KPMG LLP established its industry-driven structure. In fact, KPMG LLP was the first of the Big Four firms to organize itself along the same industry lines as clients.

How We Work

We bring together passionate problem-solvers, innovative technologies, and full-service capabilities to create opportunity with every insight.

Learn more

Careers & Culture

What is culture? Culture is how we do things around here. It is the combination of a predominant mindset, actions (both big and small) that we all commit to every day, and the underlying processes, programs and systems supporting how work gets done.

Learn more

Cybersecurity: 2022 Banking Industry Survey

The downside of digitization in an unstable geopolitical environment.

Cyber Security Services

The 2022 KPMG State of Banking Survey features insights from 100 senior executives. This article shares the findings related to the cybersecurity risks facing banks.

Cyber risk: The downside of digitization in an unstable geopolitical environment

As digital banking increases so does a bank’s exposure to cybersecurity threats. Now, with tensions rising due to the Russia-Ukraine war and economic sanctions adding to strains, 81 percent of bankers in the survey said they expect to see an increase in cybersecurity threats, yet 34 percent indicate their bank is not investing enough in cybersecurity protection.

Vulnerabilities are apparent.

While 43 percent admitted their banks may be ill-equipped to protect customer data, privacy, and assets in the event of a cyberattack, only 47 percent said their bank is investing more heavily in cybersecurity as a result of the Russia-Ukraine war.


Expect increased cybersecurity threats


Said banks may be ill-equipped to protect customer data, privacy, and assets during a cyberattack

In an increasingly digitized world, it's more vital than ever that businesses develop effective internal controls to identify and mitigate cyber risks. Cyberattacks show no signs of slowing. A separate KPMG survey of senior risk executives found that 84 percent say cybersecurity risks will grow in 2022, and 74 percent expect compliance risks to rise in tandem.

Investors, regulators, and other stakeholders increasingly demand transparency about how companies are managing evolving cyber risks to better understand the factors that could materially impact a company financially. Audit committees, which often oversee the entity’s cybersecurity risks, can play a proactive role in helping organizations understand the impact on their financial reporting and in reevaluating their privacy and security standards.

Questions that may be considered:

  • Does the institution have a data governance framework that makes clear how and what data is being collected, stored, managed, and used?
  • Which business leaders are responsible for cybersecurity and privacy across the enterprise?
  • How does the board confirm assignment, coordination, and accountability for the company’s cybersecurity and data privacy policies?
  • Does the institution have a plan for responding to a data breach, and what does it include? If a ransomware attack occurs, is the company willing to pay ransom? Does it know how to locate and prioritize data for recovery? Does it detail responsibilities for partner, customer, and regulator notification?

Action steps

Matt Miller, a KPMG principal specializing in cyber security risk issues, said “weak access management, along with insufficient authentication controls continue to give cyber attackers access to the same resources and data that legitimate users are accessing.’’ For that reason alone it is essential that banks take immediate steps to tighten up “customer and enterprise identity and access management programs.’’ Without immediate action banks will not be able to “ensure appropriate preventions against the latest account-takeover threats.’’

Business leaders remain focused on generative AI ahead of other emerging technologies

Three in four business leaders (74%) rank generative AI as the top emerging technology that will impact their business over the next year and a half. This is comparable to the results from our earlier survey, where 78% said that generative AI would have the biggest impact on business above all other technologies over the next three to five years.
Top three emerging technologies leaders believe will have the biggest impact on their business over the next 12-18 months

Barriers to adoption

Respondents were asked to rank their biggest barriers, where 1 is the biggest barrier, 2 is the second biggest, and 3 is third biggest.

Download the overview report

Download the 2023 KPMG Generative AI Survey overview report and discover how KPMG can help you accelerate the value of generative AI—responsibly and confidently.

Explore more

Meet our team

Image of Matthew P. Miller
Matthew P. Miller
Principal, Advisory, Cyber Security Services, KPMG US

Thank you!

Thank you for contacting KPMG. We will respond to you as soon as possible.

Contact KPMG

Use this form to submit general inquiries to KPMG. We will respond to you as soon as possible.

By submitting, you agree that KPMG LLP may process any personal information you provide pursuant to KPMG LLP's Privacy Statement.

An error occurred. Please contact customer support.

Job seekers

Visit our careers section or search our jobs database.

Submit RFP

Use the RFP submission form to detail the services KPMG can help assist you with.

Office locations

International hotline

You can confidentially report concerns to the KPMG International hotline

Press contacts

Do you need to speak with our Press Office? Here's how to get in touch.