KPMG United Kingdom

About
Transparency Report 2012

Our Transparency Report seeks to explain the steps that we take to uphold our professional obligations and responsibilities and how we ensure delivery of the highest quality in all of our services.

Our national charities

We are proud to be partnering with Action for Literacy and Shelter to enable us to play a greater part in tackling the key issues of literacy and homelessness in the UK today.
Industries
Insurance finance transformation

KPMG outlines how successful finance transformation programmes are structured focusing on reporting, process, people and technology to create a Target Operating Model that sets out management’s scale and ambition for change.

Tech Horizons

Emerging, evolving and expiring – our views on the technologies of today and tomorrow. Tech Horizons is an interactive tool, highlighting technologies or trends that will cause changes in the sector.
Services
- A-Z Services
Research
MF Global UK special administration

Richard Fleming, Richard Heis and Mike Pink of KPMG LLP have been appointed "Joint Special Administrators" of MF Global UK Limited. This website provides the latest updates and information from the Joint Special Administrators.

Fast Forward 2035

fast|forward is a new and exciting project by KPMG investigating the key corporate mega-trends that will change the future business landscape and the role of the CFO.
Careers
Live. Learn. Earn. The School and Colleges Leavers Programme

Explore your options in our e-zine, where you’ll find out more about whether our Audit, Risk Consulting or Gap Programme is for you.

Graduate Programmes

If you’re not a little bit scared, you’re not paying attention. Find out more about our graduate programmes in audit, tax, advisory and central services.
Media
KPMG in the UK on Twitter

Keep up to date with the latest news and views from KPMG in the UK by following our twitter feed.

KPMG blog

KPMG’s leadership blogs brings you insight, opinion and debate from our senior partners and industry experts.
Alumni
Connected 2012

Connected 2012 features interviews with many alumni including: Leslie Ferrar, Treasurer to The Prince of Wales; Joseph Wan, CEO of Harvey Nichols; Mark Donnelly, CFO of The Football Association; and Frank Bandura, CFO of Carluccio's Ltd.

LinkedIn

Over 11,000 of our alumni are registered on LinkedIn. We have established the KPMG UK Alumni group to enable you to contact many of our past and current people who are members.

Details

Service: Advisory, Risk Consulting, Insights
Type: Business and industry issue
Date: 29/08/2011

Managing e-crime risk in a changing business and technology landscape

E-crime Image

Recent reports of cyber attacks launched against large companies demonstrate that protecting and securing data is more important now than ever before. Cyber attacks can have a negative impact on brand value, reputation and the ability to generate revenue. Identifying how a data compromise could occur and ensuring adequate incident response procedures are in place are key to reducing the risk of suffering from a data breach.

As sponsors of the e-Crime Report 2011, KPMG in association with the e-Crime Congress surveyed over 200 senior security decision makers globally across all industry sectors to explore three key areas:

Their views of the threat landscape today
The impact of new emerging technologies and business models on the level of e-crime risk
How organisations can structure a response to the threat of e-crime

Download the full report here (PDF 3.5 MB)

Managing IT risk is now vital to maximising commercial potential

Ensuring the continuity of business operations and protecting sensitive data is not just about how much you spend, but whether you understand your risk profile and spend effectively. Managing technology and information risk is now a vital part of protecting your brand and reputation.

Over the past few years, big changes have occurred in the cyber threat landscape. Recent incidents demonstrate that the emergence of ‘hactivism’ and the increased prominence of state sponsored cyber attacks have serious implications for all industry sectors.

In the recent e-Crime Survey, only 6% of respondents indicated that the overall level of e-crime risk their organisation faces has decreased over the past year. In addition, over 80% of respondents identified that, in the next 12 months, the use of smart phones, social networking, and consumer devices use are set to increase e-crime risk for their organisations.

Frameworks must evolve to meet changing business models

Despite having to deal with a constantly evolving risk landscape, information security strategies should still be based around a common framework that delivers the following core pillars of capability: prevent, detect and respond. However, strategies must be structured so that they are sufficiently flexible and agile to adapt as circumstances change.

Threat modelling, risk assessment techniques and an understanding of the threat landscape should be incorporated to provide intelligence that can ensure available resources are targeted to the right areas. It is increasingly difficult to predict the nature and severity of attacks. Testing and updating incident response capability to make sure it is fit for purpose is therefore vital. There is no point in putting your seatbelt on after the crash has happened.

Cyber defence a board issue for every organisation

Cyber security is now on almost all board agendas and frequently at the top. Many CEOs at large companies have been briefed by intelligence agencies and have a better understanding of the severity of the threat landscape.

It is important that cyber defence is not just thought of as a security issue or a technology issue. It is at the very heart of how a business builds trust with customers, as well as how it builds and protects brand value. The issues at stake are sufficiently important that the definition of strategy and investment needs to sit with the board. The level of investment needs to reflect business appetite for risk and support business goals. This is still very rare. Heads of Security and CIOs often second-guess the board’s risk appetite and willingness to spend.

A business led approach is required to reducing risk

Effective risk and security management frameworks need to be corporate wide, proactive, forward looking, closely integrated with other risk disciplines and have board-level engagement. Approaches that attempt to measure and manage risk in silos will fail.

A successful strategy requires risk, security and technology teams to work alongside colleagues in sales, legal, fraud prevention and crisis management functions, as well as those in charge of procurement, marketing and press relations.

Contact

Malcolm Marshall

UK Head of Information Security
KPMG LLP

020 7311 5456 | malcolm.marshall@kpmg.co.uk

Watch video

UK Head of Information Protection, Malcolm Marshall, KPMG LLP discusses the key findings from the e-crime 2011 report.

Watch video

Download full report

The e-Crime Report 2011 (PDF 3.5MB)

How we can help you

Information Protection

Cyber Response

Technology Risk

Technology Risk Consulting

Related insights and publications

Information Protection Services (PDF 118 KB)

KPMG's top 10 tips for defending against cyber attack

© 2013 KPMG LLP, a UK limited liability partnership, is a subsidiary of KPMG Europe LLP and a member firm of the KPMG network of independent member firms affiliated with KPMG International Cooperative, a Swiss entity. All rights reserved.

KPMG International Cooperative ("KPMG International") is a Swiss entity. Member firms of the KPMG network of independent firms are affiliated with KPMG International. KPMG International provides no client services. No member firm has any authority to obligate or bind KPMG International or any other member firm vis-à-vis third parties, nor does KPMG International have any such authority to obligate or bind any member firm.