{"id":16359,"date":"2021-08-19T20:55:19","date_gmt":"2021-08-19T15:25:19","guid":{"rendered":"https:\/\/cigniti.com\/blog\/?p=16359"},"modified":"2021-08-23T19:25:32","modified_gmt":"2021-08-23T13:55:32","slug":"bfs-vulnerability-assessment-security-penetration-testing","status":"publish","type":"post","link":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/","title":{"rendered":"Why do Banking &#038; Financial Services need Security &#038; Penetration Testing today"},"content":{"rendered":"<p><span data-contrast=\"auto\">In a rapidly digitizing world, thanks to COVID, cybersecurity has become a key focus of\u00a0CxOs. Banking, Financial Services &amp; Insurance (BFSI) organizations,\u00a0which handle sensitive financial and personal information of users and employees, are constantly threatened by cybercriminals.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">According to Forbes, an analysis in 2015 found that cybercriminals targeted financial organizations four times more than other industries. In 2019, the same survey found that financial firms experienced 300 times more\u00a0cyber-attacks\u00a0than other organizations.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">So,\u00a0banks and\u00a0financial institutions are big targets for cyber-attacks.\u00a0How can these organizations prepare themselves against these potential cyber threats?\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The answer to that is to perform periodic and thorough Vulnerability Assessment and Penetration Testing (VAPT).<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What is\u00a0Vulnerability Assessment and Penetration Testing\u00a0(VAPT)? Why is it needed for BFSI organizations?<\/span><\/b><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">VAPT comprises a wide array of security assessments to help address cybersecurity risks across an organization&#8217;s information technology landscape. These tests include automated vulnerability tests and human-led penetration testing or ethical hacking tests.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">BFSI organizations handle highly sensitive financial data of individuals, governments,\u00a0and\u00a0public and private corporations. Those data are bank account numbers, credit card numbers,\u00a0national identification numbers, addresses etc.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Data breaches in such institutions can lead to financial losses, regulatory penalties, and loss of reputation for the organizations. So, most of these organizations have invested heavily in cybersecurity infrastructure to ensure that their systems, applications, and databases are safe from cyber threats.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Even before COVID, digitization was a significant trend in the BFSI industry. Apart from the existing firms going digital, digital-only financial institutions have come up in the BFSI industry landscape.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">This heavy digital presence in this industry has made these organizations even more vulnerable to cyberattacks. The plethora of access mechanisms like\u00a0the\u00a0web, mobile and wireless technologies have exponentially increased financial institutions&#8217; points of vulnerability.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In addition to their internal systems,\u00a0banks also have secondhand exposures resulting from credit\/payments card information being handled by organizations in other industries,\u00a0like retail, hospitality, e-commerce website,\u00a0etc.,\u00a0or\u00a0by\u00a0outsourced IT service vendors who manage their systems remotely.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">All these exposures have made VAPT a primary need for the survival of BFSI organizations.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In addition to all the above, VAPT is an organizational imperative to protect against cyber threats and a compliance requirement in today&#8217;s world.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The\u00a0European GDPR, ISO 27001, Gramm Leach Bliley act of\u00a0the\u00a0USA, California Consumer Privacy Act (CCPA) and similar data protection acts across the globe\u00a0have\u00a0necessitated VAPT testing for information security.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.cigniti.com\/industries\/financial-services\/\"><span data-contrast=\"none\">Financial services<\/span><\/a><span data-contrast=\"auto\">\u00a0organizations are at the top of the regulatory focus for data protection as they handle highly sensitive nonpublic personal information (NPI).<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What are the different\u00a0types\u00a0of threats that financial services organizations face today?<\/span><\/b><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The different modes of threats that financial services organizations face today are as follows.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 1. Unencrypted data<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">A primary way\u00a0of\u00a0safely storing\u00a0data is through encryption. Even in these times, encryption of sensitive information is not followed religiously across the organization, e.g. the data in test environments\u00a0is\u00a0left vulnerable to internal malicious threats.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 2. Ransomware &amp; Malware<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">We have seen multiple ransomware &amp; malware attacks on leading\u00a0banking institutions and IT service organizations that work with banks. Many of these vulnerabilities involve internal employees who connected using infected machines or provided user credentials unintentionally in phishing attacks. According to Forbes, ransomware\u00a0causes\u00a0about $75 billion per year\u00a0in damage\u00a0to various organizations.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 3. Cloud providers<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" aria-setsize=\"-1\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Cloud providers have become key targets of\u00a0cyber attacks\u00a0as many BFSI organizations use cloud providers for storage and applications. A recent Wall Street Journal report on an attack named &#8216;Cloud Hopper&#8217; involved multiple cloud providers.\u00a0<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 4. Unsecure third-party vendors and services<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">In a world where outsourcing of technology and business process services is the norm, the security practices within the third-party services firms that work on the systems\u00a0are\u00a0another source of vulnerability.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" aria-setsize=\"-1\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Financial institutions also use multiple third-party vendor software packages in their application landscape.\u00a0Inadequately tested third party software could be another source of vulnerability for financial institutions.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 5. Phishing &amp; Spoofing<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"11\" aria-setsize=\"-1\" data-aria-posinset=\"3\" data-aria-level=\"1\"><span data-contrast=\"auto\">In this method, many duplicate banking websites created by\u00a0hackers\u00a0trick customers into providing their user credentials. The hackers then use these credentials to steal from the user accounts.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 6. Internet of Things (IoT)<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"11\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Hardware is the new area of vulnerability that cyber-attacks have started to focus on. Devices such as home routers, printers,\u00a0and cameras are vulnerable to attack.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">While we\u2019ve seen the different modes of threats\u00a0that financial services organizations face, it is imperative to know more about the services that VAPT testing offers.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What are the services that comprise VAPT testing?<\/span><\/b><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Vulnerability assessment is a systematic review of the weaknesses in the information technology landscape. The assessment includes\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ol>\n<li data-leveltext=\"%1.\" data-font=\"Calibri\" data-listid=\"5\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Servers and Hosts<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"%1.\" data-font=\"Calibri\" data-listid=\"5\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Network and wireless infrastructure<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"%1.\" data-font=\"Calibri\" data-listid=\"5\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Databases<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"%1.\" data-font=\"Calibri\" data-listid=\"5\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Applications \u2013 Internal and External facing applications<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"%1.\" data-font=\"Calibri\" data-listid=\"5\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Cloud infrastructure security<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ol>\n<p><span data-contrast=\"auto\">Vulnerability assessment alerts organizations\u00a0to\u00a0pre-existing flaws in their applications, hosts, networks, or databases. It does not specify which of those vulnerabilities can be exploited to cause losses. This is where penetration testing comes\u00a0into play.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Penetration testing (a.k.a. Pen-testing) attempts to exploit those vulnerabilities and helps\u00a0the organization understand the severity of each of these vulnerabilities.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Pen testing comprises a combination of automated and human-led tests to identify and exploit these vulnerabilities in the infrastructure, external-facing and internal-facing applications, and other systems.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The various types of penetration testing are<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 1. External and\u00a0internal infrastructure testing<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"12\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Internal threats from employees (Intentional &amp; Unintentional) malicious actions<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"12\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Threats to external-facing systems like web servers, mail servers, FTP servers,\u00a0etc.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 2. Web and\u00a0mobile application testing<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"9\" aria-setsize=\"-1\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Coverage includes\u00a0OWASP\u2019s\u00a0top 10 application security risks.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">\u00a0 \u00a0 \u00a0 3. Social vulnerability testing<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:360,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"9\" aria-setsize=\"-1\" data-aria-posinset=\"3\" data-aria-level=\"1\"><span data-contrast=\"auto\">Proactive testing using\u00a0phishing emails\u00a0and\u00a0duplicate websites to create employee awareness and susceptibility<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559685&quot;:720,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">In addition to the testing,\u00a0organizations need to focus on employee and third-party service provider education to prevent them from becoming the conduit for malicious attacks.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Last but not least, IoT devices have added a new hardware angle to the cyber threat area. So, organizations that involve remote or home-based\u00a0office-based work need to include IoT devices in their VAPT testing.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Thus, Vulnerability Assessment and Penetration\u00a0Testing combine to provide a detailed view of the flaws in the organization&#8217;s systems and the potential losses that these flaws could expose.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">How often does an organization perform VAPT?<\/span><\/b><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The industry\u2019s\u00a0best practice is to run a VAPT once per quarter on all the host systems, applications, databases, and network infrastructure.\u00a0<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In addition to the periodic tests, all web and mobile application development projects need to undergo VAPT to ensure that the new application or enhancement does not introduce vulnerabilities into the landscape.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<h4 aria-level=\"2\"><strong>Conclusion:\u00a0<\/strong><\/h4>\n<p><span data-contrast=\"auto\">Cigniti\u2019s\u00a0Managed Security Testing Services model is an amalgamation of industry best practices and decade-long expertise in software testing services delivery, ensuring your applications are secure, scalable, and agile. Our\u00a0<\/span><a href=\"https:\/\/www.cigniti.com\/services\/security-testing\/?utm_source=blog&amp;utm_medium=hyperlink&amp;utm_campaign=SecurityTesting\"><span data-contrast=\"none\">Security Testing<\/span><\/a><span data-contrast=\"auto\">\u00a0and\u00a0<\/span><a href=\"https:\/\/www.cigniti.com\/services\/network-penetration-testing\/\"><span data-contrast=\"none\">web application penetration testing<\/span><\/a><span data-contrast=\"auto\">\u00a0exposes vulnerabilities\u00a0in applications, assures your application risks are minimized, and benchmarks your software code for increased quality assurance. Our Security Testing services across different industry verticals &amp; enterprises ensure cyber-safety, leading to robust brand image &amp; client retention.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Our 100+ Security Testing experts with over 12+ years of security testing expertise are currently working on more than 25 active engagements and\u00a0have\u00a0already\u00a0completed\u00a075+ successful assignments. Our core offerings as a part of\u00a0the\u00a0Security Testing Center of Excellence include Architecture Review\/ Threat Modelling and Risk Assessment, Static Application Security Testing, Dynamic\/Mobile Application Security Testing, Infrastructure Penetration Testing, Vulnerability Management, IoT Security Testing,\u00a0DevSecOps, SOC (Security operation center), and training.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">The key differentiators of our dynamic application security\u00a0testing\u00a0services are<\/span><\/b><span data-contrast=\"auto\">:<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"13\" aria-setsize=\"-1\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Standardized methodologies<\/span><\/b><span data-contrast=\"auto\">\u00a0aligned\u00a0to\u00a0<\/span><b><span data-contrast=\"auto\">OWASP, Open SAMM &amp; OSTTM.<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"13\" aria-setsize=\"-1\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Testing performed from\u00a0a\u00a0<\/span><b><span data-contrast=\"auto\">Hacker\u2019s Eye View.<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"13\" aria-setsize=\"-1\" data-aria-posinset=\"3\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Continuous Testing Platform<\/span><\/b><span data-contrast=\"auto\">\u00a0with in-built\u00a0<\/span><b><span data-contrast=\"auto\">Security Engineering &amp; Testing.<\/span><\/b><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"13\" aria-setsize=\"-1\" data-aria-posinset=\"4\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Next Generation IP &#8211;\u00a0BlueSwan&#x2122;\u00a0<\/span><\/b><span data-contrast=\"auto\">that comes with a<\/span><b><span data-contrast=\"auto\">\u00a0Model-Based Testing Tool (Prudentia) &amp; Reporting Dashboard\u00a0Verita,\u00a0<\/span><\/b><span data-contrast=\"auto\">for SLA\/KPI monitoring;\u00a0CxO\u00a0dashboards; Predictive analytics\u00a0that help in faster decision making, leading to faster time-to-market.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"13\" aria-setsize=\"-1\" data-aria-posinset=\"5\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Industry recognized\u00a0certifications\u00a0<\/span><\/b><span data-contrast=\"auto\">of our security test experts include Certified Ethical Hacker, Licensed Penetration Tester Master, Certified Information Systems Security Professional, Certified Information Systems Auditor, and Certified Information Security Manager.<\/span><span data-ccp-props=\"{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><a href=\"https:\/\/www.cigniti.com\/contact-us\/?utm_source=blog&amp;utm_medium=hyperlink&amp;utm_campaign=ContactUs\"><span data-contrast=\"none\">Schedule a discussion<\/span><\/a><span data-contrast=\"auto\">\u00a0with our\u00a0Security and Penetration Testing\u00a0experts to find out more about\u00a0why banking and financial services need Vulnerability Assessment and Penetration testing today.<\/span><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559739&quot;:160,&quot;335559740&quot;:259}\">\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In a rapidly digitizing world, thanks to COVID, cybersecurity has become a key focus of\u00a0CxOs. Banking, Financial Services &amp; Insurance (BFSI) organizations,\u00a0which handle sensitive financial and personal information of users and employees, are constantly threatened by cybercriminals.\u00a0\u00a0 According to Forbes, an analysis in 2015 found that cybercriminals targeted financial organizations four times more than other [&hellip;]<\/p>\n","protected":false},"author":53,"featured_media":16360,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[732,7],"tags":[2557,3409,3725,3170,3412,3724,3726,3327,3169,305,3723,1481,3408,3410,3411],"ppma_author":[3771],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v19.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Banking &amp; Financial Services need Security &amp; Penetration Testing | Vulnerability Assessment<\/title>\n<meta name=\"description\" content=\"Vulnerability Assessment, Security and Penetration Testing combine to provide a detailed view of the flaws in the banking and financial systems and the potential losses that these flaws could expose.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Why do Banking &amp; Financial Services need Security &amp; Penetration Testing today\" \/>\n<meta property=\"og:description\" content=\"Banks and financial institutions are big targets for cyber-attacks. How can these organizations prepare themselves against these potential cyber threats? The answer to that is to perform periodic and thorough Vulnerability Assessment and Penetration Testing (VAPT). Read Cigniti\u2019s blog on why banking and financial services need security and penetration testing today.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog by Cigniti Technologies\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cignititechnologies\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-19T15:25:19+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-23T13:55:32+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Why-do-Banking-Financial-Services-need-Security-Penetration-Testing-today.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"833\" \/>\n\t<meta property=\"og:image:height\" content=\"449\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sathish Thiruvenkataswamy\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"Why do Banking &amp; Financial Services need Security &amp; Penetration Testing today\" \/>\n<meta name=\"twitter:description\" content=\"Vulnerability assessment alerts organizations to pre-existing flaws in their applications, hosts, networks, or databases. It does not specify which of those vulnerabilities can be exploited to cause losses. This is where penetration testing comes into play.\" \/>\n<meta name=\"twitter:creator\" content=\"@cigniti\" \/>\n<meta name=\"twitter:site\" content=\"@cigniti\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sathish Thiruvenkataswamy\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\"},\"author\":{\"name\":\"Sathish Thiruvenkataswamy\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/17cd9a803c729ee7296766bf02478d9b\"},\"headline\":\"Why do Banking &#038; Financial Services need Security &#038; Penetration Testing today\",\"datePublished\":\"2021-08-19T15:25:19+00:00\",\"dateModified\":\"2021-08-23T13:55:32+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\"},\"wordCount\":1373,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/#organization\"},\"keywords\":[\"application security testing services\",\"automated testing in banking\",\"bank app testing testing financial applications\",\"banking applications testing\",\"banking domain software testing\",\"banking security software testing\",\"Financial app security\",\"financial domain testing\",\"payment security testing\",\"Penetration Testing\",\"security penetration testing\",\"Security Testing services\",\"software testing for banking industry\",\"test automation in banking\",\"test banking domain application\"],\"articleSection\":[\"BFSI Testing\",\"Security Testing\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\",\"url\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\",\"name\":\"Banking & Financial Services need Security & Penetration Testing | Vulnerability Assessment\",\"isPartOf\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/#website\"},\"datePublished\":\"2021-08-19T15:25:19+00:00\",\"dateModified\":\"2021-08-23T13:55:32+00:00\",\"description\":\"Vulnerability Assessment, Security and Penetration Testing combine to provide a detailed view of the flaws in the banking and financial systems and the potential losses that these flaws could expose.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.cigniti.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Why do Banking &#038; Financial Services need Security &#038; Penetration Testing today\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#website\",\"url\":\"https:\/\/www.cigniti.com\/blog\/\",\"name\":\"Blog by Cigniti Technologies\",\"description\":\"Digital Assurance &amp; Digital Engineering Insights | Cigniti\",\"publisher\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.cigniti.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#organization\",\"name\":\"Cigniti Technologies\",\"url\":\"https:\/\/www.cigniti.com\/blog\/\",\"sameAs\":[\"https:\/\/instagram.com\/cigniti\/\",\"https:\/\/www.linkedin.com\/company\/cigniti-inc\",\"https:\/\/www.pinterest.com\/cigniti\/\",\"https:\/\/www.youtube.com\/user\/Cignititechnologies\",\"https:\/\/www.facebook.com\/cignititechnologies\",\"https:\/\/twitter.com\/cigniti\"],\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Cigniti-logo.jpg\",\"contentUrl\":\"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Cigniti-logo.jpg\",\"width\":500,\"height\":500,\"caption\":\"Cigniti Technologies\"},\"image\":{\"@id\":\"https:\/\/www.cigniti.com\/blog\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/17cd9a803c729ee7296766bf02478d9b\",\"name\":\"Sathish Thiruvenkataswamy\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png\",\"contentUrl\":\"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png\",\"caption\":\"Sathish Thiruvenkataswamy\"},\"description\":\"Sathish has 20 years of experience in Consulting, fostering Innovation, managing Product Partnerships, Delivery Solutions and Program Management, focusing on the BFSI domain. Within Cigniti, Sathish is building a new age BFSI Practice &amp;\u00a0Centres\u00a0of Excellence that focuses on building deep domain competence and developing\u00a0solutions for the challenges faced by the industry.\",\"sameAs\":[\"https:\/\/www.cigniti.com\/\"],\"url\":\"https:\/\/www.cigniti.com\/blog\/author\/sathish-t\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Banking & Financial Services need Security & Penetration Testing | Vulnerability Assessment","description":"Vulnerability Assessment, Security and Penetration Testing combine to provide a detailed view of the flaws in the banking and financial systems and the potential losses that these flaws could expose.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/","og_locale":"en_US","og_type":"article","og_title":"Why do Banking & Financial Services need Security & Penetration Testing today","og_description":"Banks and financial institutions are big targets for cyber-attacks. How can these organizations prepare themselves against these potential cyber threats? The answer to that is to perform periodic and thorough Vulnerability Assessment and Penetration Testing (VAPT). Read Cigniti\u2019s blog on why banking and financial services need security and penetration testing today.","og_url":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/","og_site_name":"Blog by Cigniti Technologies","article_publisher":"https:\/\/www.facebook.com\/cignititechnologies","article_published_time":"2021-08-19T15:25:19+00:00","article_modified_time":"2021-08-23T13:55:32+00:00","og_image":[{"width":833,"height":449,"url":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Why-do-Banking-Financial-Services-need-Security-Penetration-Testing-today.jpg","type":"image\/jpeg"}],"author":"Sathish Thiruvenkataswamy","twitter_card":"summary_large_image","twitter_title":"Why do Banking & Financial Services need Security & Penetration Testing today","twitter_description":"Vulnerability assessment alerts organizations to pre-existing flaws in their applications, hosts, networks, or databases. It does not specify which of those vulnerabilities can be exploited to cause losses. This is where penetration testing comes into play.","twitter_creator":"@cigniti","twitter_site":"@cigniti","twitter_misc":{"Written by":"Sathish Thiruvenkataswamy","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#article","isPartOf":{"@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/"},"author":{"name":"Sathish Thiruvenkataswamy","@id":"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/17cd9a803c729ee7296766bf02478d9b"},"headline":"Why do Banking &#038; Financial Services need Security &#038; Penetration Testing today","datePublished":"2021-08-19T15:25:19+00:00","dateModified":"2021-08-23T13:55:32+00:00","mainEntityOfPage":{"@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/"},"wordCount":1373,"commentCount":0,"publisher":{"@id":"https:\/\/www.cigniti.com\/blog\/#organization"},"keywords":["application security testing services","automated testing in banking","bank app testing testing financial applications","banking applications testing","banking domain software testing","banking security software testing","Financial app security","financial domain testing","payment security testing","Penetration Testing","security penetration testing","Security Testing services","software testing for banking industry","test automation in banking","test banking domain application"],"articleSection":["BFSI Testing","Security Testing"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/","url":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/","name":"Banking & Financial Services need Security & Penetration Testing | Vulnerability Assessment","isPartOf":{"@id":"https:\/\/www.cigniti.com\/blog\/#website"},"datePublished":"2021-08-19T15:25:19+00:00","dateModified":"2021-08-23T13:55:32+00:00","description":"Vulnerability Assessment, Security and Penetration Testing combine to provide a detailed view of the flaws in the banking and financial systems and the potential losses that these flaws could expose.","breadcrumb":{"@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.cigniti.com\/blog\/bfs-vulnerability-assessment-security-penetration-testing\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.cigniti.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Why do Banking &#038; Financial Services need Security &#038; Penetration Testing today"}]},{"@type":"WebSite","@id":"https:\/\/www.cigniti.com\/blog\/#website","url":"https:\/\/www.cigniti.com\/blog\/","name":"Blog by Cigniti Technologies","description":"Digital Assurance &amp; Digital Engineering Insights | Cigniti","publisher":{"@id":"https:\/\/www.cigniti.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.cigniti.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.cigniti.com\/blog\/#organization","name":"Cigniti Technologies","url":"https:\/\/www.cigniti.com\/blog\/","sameAs":["https:\/\/instagram.com\/cigniti\/","https:\/\/www.linkedin.com\/company\/cigniti-inc","https:\/\/www.pinterest.com\/cigniti\/","https:\/\/www.youtube.com\/user\/Cignititechnologies","https:\/\/www.facebook.com\/cignititechnologies","https:\/\/twitter.com\/cigniti"],"logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.cigniti.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Cigniti-logo.jpg","contentUrl":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Cigniti-logo.jpg","width":500,"height":500,"caption":"Cigniti Technologies"},"image":{"@id":"https:\/\/www.cigniti.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/17cd9a803c729ee7296766bf02478d9b","name":"Sathish Thiruvenkataswamy","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.cigniti.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png","contentUrl":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png","caption":"Sathish Thiruvenkataswamy"},"description":"Sathish has 20 years of experience in Consulting, fostering Innovation, managing Product Partnerships, Delivery Solutions and Program Management, focusing on the BFSI domain. Within Cigniti, Sathish is building a new age BFSI Practice &amp;\u00a0Centres\u00a0of Excellence that focuses on building deep domain competence and developing\u00a0solutions for the challenges faced by the industry.","sameAs":["https:\/\/www.cigniti.com\/"],"url":"https:\/\/www.cigniti.com\/blog\/author\/sathish-t\/"}]}},"authors":[{"term_id":3771,"user_id":53,"is_guest":0,"slug":"sathish-t","display_name":"Sathish Thiruvenkataswamy","avatar_url":{"url":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png","url2x":"https:\/\/www.cigniti.com\/blog\/wp-content\/uploads\/Sathish.png"},"first_name":"Sathish","last_name":"Thiruvenkataswamy","user_url":"https:\/\/www.cigniti.com\/","description":"<span data-contrast=\"auto\">Sathish has 20 years of experience in Consulting, fostering Innovation, managing Product Partnerships, Delivery Solutions and Program Management, focusing on the BFSI domain. <\/span><span data-contrast=\"auto\">Within Cigniti, Sathish is building a new age BFSI Practice &amp;\u00a0Centres\u00a0of Excellence that focuses on building deep domain competence and developing\u00a0solutions for the challenges faced by the industry.<\/span>"}],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/posts\/16359"}],"collection":[{"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/users\/53"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/comments?post=16359"}],"version-history":[{"count":0,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/posts\/16359\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/media\/16360"}],"wp:attachment":[{"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/media?parent=16359"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/categories?post=16359"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/tags?post=16359"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.cigniti.com\/blog\/wp-json\/wp\/v2\/ppma_author?post=16359"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}