Building a resilient human firewall in UK financial services

Published on: 30/01/2026 00:00

The intensifying regulatory focus in the UK on operational resilience and fraud has shifted the conversation on cyber security away from mere technology investment towards a critical and often overlooked component: human behaviour and organisational culture. For financial services firms, cyber resilience is no longer an IT department’s problem, it is a fundamental conduct issue and a board-level imperative.

The stark reality is that technology, however sophisticated, is easily bypassed by human error. Data shows that 95% of all cyberattacks are related to human error (The Mimecast State of Human Risk 2025). As we discussed in a recent webinar with Elephants Don’t Forget, “Firewalls don’t click links: People do”.

Read the full article published in GRIP (free trial subscription).