Skip to main content
The Actuary: The magazine of the Institute and Faculty of Actuaries - return to the homepage Logo of The Actuary website
  • Search
  • Visit The Actuary Magazine on Facebook
  • Visit The Actuary Magazine on LinkedIn
  • Visit @TheActuaryMag on Twitter
Visit the website of the Institute and Faculty of Actuaries Logo of the Institute and Faculty of Actuaries

Main navigation

  • News
  • Features
    • General Features
    • Interviews
    • Students
    • Opinion
  • Topics
  • Knowledge
    • Business Skills
    • Careers
    • Events
    • Predictions by The Actuary
    • Whitepapers
    • Moody's - Climate Risk Insurers series
    • Webinars
    • Podcasts
  • Jobs
  • IFoA
    • CEO Comment
    • IFoA News
    • People & Social News
    • President Comment
  • Archive
Quick links:
  • Home
  • Sections
  • News

Quarter of UK pension schemes unprepared for cyber breach

Open-access content Wednesday 24th February 2021
Quarter of UK pension schemes unprepared for cyber breach

One-quarter of UK pension schemes do not have an adequate cybercrime breach plan, despite the threat being recognised as one the top risks they face, a new survey has uncovered.

The findings from professional services firm Crowe also show that 22% of schemes are failing to properly identify the key operations, IT systems and information flows vulnerable to cyber attacks.

In addition, almost a third said that they had not assessed the cyber vulnerability of their third-party suppliers, and therefore could not attain assurance that risks are being managed appropriately.

Crowe’s researchers also found a “worrying” number of administrators relying on old-fashioned identity verification methods that are highly susceptible to fraud, and that almost half of schemes had not undertaken an independent review of the process for putting member benefits into payments.

“These latest results provide a clear takeaway for the industry: the risk of cybercrime and fraud cannot be ignored and is something that needs urgent remedying,” said Andrew Penketh, national head of pension funds at Crowe.

“Too few pension funds are properly assessing the risks, too many are lacking the expertise to combat cyber attacks, and there is a clear deficit of efficacious fraud prevention procedures put in place across the board.”

Even for those pensions schemes that may have adequately assessed the risk of external threats, dishonest employees can still identify and exploit vulnerabilities. 

However, half of the survey respondents said that they had not undertaken an independent review of the process of vetting staff with access to personal member data prior to their appointment. 

While awareness of the threat is at all time high, 42% of schemes still did not have access to the  specialist skills required to investigate and combat cybercrime, and 59% had not provided cybercrime scenario-based training to trustees.

Jim Gee, head of forensic services at Crowe, highlighted government figures suggesting a 92% increase in incidents of cybercrime since the outbreak of COVID-19, and said that pension schemes are particularly vulnerable.

“They are responsible for rich seams of personal data often collected over many years which is attractive for cyber criminals to steal and attack others,” he continued.

“They are also vulnerable to ransomware attacks because cybercriminals believe that the pressure to continue to make pension payments might induce pension schemes to pay the ransom which has been demanded.

“Trustees need to make sure that their schemes and third party suppliers have the right policies in place, the right training, and access to the right specialist skills. There is no time to waste because when it comes to cyber-attacks, it is not a case of if, but when.”

 

Image credit: iStock

Author: Chris Seekings

Also filed in
News
Topics
Pensions
Technology

You might also like...

Share
  • Twitter
  • Facebook
  • Linked in
  • Mail
  • Print

Latest Jobs

New Fast-Growing Team - Actuarial Systems Development

London (Greater)
Excellent Salary Package
Reference
143762

Actuarial Pension Consultant – Scotland/Remote – Up to £90,000 plus bonus

Edinburgh / Glasgow / Remote working
Up to £90,000 + Bonus
Reference
143761

Part Qualified Pensions Actuary– Specialised Pensions Consultancy - Scotland/Remote - Up to £70,000

Edinburgh / Glasgow / Remote working
Up to £70,000 + Bonus
Reference
143760
See all jobs »
 
 

Today's top reads

 
 

Sign up to our newsletter

News, jobs and updates

Sign up

Subscribe to The Actuary

Receive the print edition straight to your door

Subscribe
Spread-iPad-slantB-june.png

Topics

  • Data Science
  • Investment
  • Risk & ERM
  • Pensions
  • Environment
  • Soft skills
  • General Insurance
  • Regulation Standards
  • Health care
  • Technology
  • Reinsurance
  • Global
  • Life insurance
​
FOLLOW US
The Actuary on LinkedIn
@TheActuaryMag on Twitter
Facebook: The Actuary Magazine
CONTACT US
The Actuary
Tel: (+44) 020 7880 6200
​

IFoA

About IFoA
Become an actuary
IFoA Events
About membership

Information

Privacy Policy
Terms & Conditions
Cookie Policy
Think Green

Get in touch

Contact us
Advertise with us
Subscribe to The Actuary Magazine
Contribute

The Actuary Jobs

Actuarial job search
Pensions jobs
General insurance jobs
Solvency II jobs

© 2023 The Actuary. The Actuary is published on behalf of the Institute and Faculty of Actuaries by Redactive Publishing Limited. All rights reserved. Reproduction of any part is not allowed without written permission.

Redactive Media Group Ltd, 71-75 Shelton Street, London WC2H 9JQ