Our research explores the Italian banking sector. In particular it focuses on the analysis of the cyber risk management in Bene Banca, a Credit Cooperative Bank (BCC) in the North-West of Italy. This research represents a case study that can help us understand the context and the main characteristics of the methodology implied by Bene Banca in managing cyber risk. Data were collected through semi-structured interviews of an open-ended nature and questionnaires to directors, members of the audit committee, risk managers, compliance managers, internal audit function and anti-money laundering responsible. We decided to concentrate on this small bank because of its size and its role on the local territory and because the cyber risk management is outsourced. Furthermore we focus on the topic of cyber crime because IT attacks have increased drastically in recent years, both in terms of complexity and resources, and they cannot be stopped by single organizations, because they need a response at country level. Consequently this paper has been motivated by the gaps in the understanding and in considering cyber risk and cyber risk management as an integral part of the business management.

CYBER RISK MANAGEMENT IN CREDIT COOPERATIVE BANKS: A CASE STUDY

OSSOLA, Giovanni;GIOVANDO, Guido;CROVINI, CHIARA
2017-01-01

Abstract

Our research explores the Italian banking sector. In particular it focuses on the analysis of the cyber risk management in Bene Banca, a Credit Cooperative Bank (BCC) in the North-West of Italy. This research represents a case study that can help us understand the context and the main characteristics of the methodology implied by Bene Banca in managing cyber risk. Data were collected through semi-structured interviews of an open-ended nature and questionnaires to directors, members of the audit committee, risk managers, compliance managers, internal audit function and anti-money laundering responsible. We decided to concentrate on this small bank because of its size and its role on the local territory and because the cyber risk management is outsourced. Furthermore we focus on the topic of cyber crime because IT attacks have increased drastically in recent years, both in terms of complexity and resources, and they cannot be stopped by single organizations, because they need a response at country level. Consequently this paper has been motivated by the gaps in the understanding and in considering cyber risk and cyber risk management as an integral part of the business management.
2017
10th Annual Conference of the EuroMed Academy of Business
Roma, Italia
13-15 settembre 2017
Global and national business theories and practice: bridging the past with the future
EuroMed Press
1239
1250
978-9963-711-56-7
cyber risk management, credit cooperative bank, cybercrime, threats, IT, case study
Ossola, Giovanni; Giovando, Guido; Crovini, Chiara
File in questo prodotto:
File Dimensione Formato  
OSSOLA,GIOVANDO,CROVINI-CYBER-RISK revised.pdf

Accesso aperto

Tipo di file: POSTPRINT (VERSIONE FINALE DELL’AUTORE)
Dimensione 340.65 kB
Formato Adobe PDF
340.65 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2318/1648064
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? 0
social impact