According to the Open Source Maturity in Europe report from 2024, the IT industry (37% of responses), government administration (36%), and education (30%) can benefit the most from open solutions[1]. Many experts also point to the possibility of using open source software in healthcare, telecommunications, local government, and financial services, key sectors for the functioning of the state. The IT systems of organizations in these areas are one of the main targets of cyberattacks. How then to counter the threats escalating in times of unstable geopolitical situations, while using the potential of open source on the way to digital transformation? This question is answered by cybersecurity experts from Linux Polska.
Room for Improvement in the Financial Sector
There is a widely held belief that the use of open solutions in financial services involves taking special precautions. This is indicated by representatives of this sector themselves, who consider technologies related to artificial intelligence (45% of responses) and cybersecurity (32%) to be the most important in the open source field[2].
As the number of hacker attacks increases year by year and some are publicized by the media, a higher awareness of threats should not come as a surprise. Even so, data indicates that the issue of open source security in the financial services sector needs significant improvement. Studies from 2024 show that 39% of organizations in this area have internal guidelines for using OSS. The same number of companies conduct a formal process for assessing OSS components, but only 36% have appropriate tools for security scanning or license checking[3].
Tomasz Dziedzic, Chief Technology Officer at Linux Polska, emphasizes that analyzing individual risk factors is better than total inactivity, but key sectors should act comprehensively.
Will DORA Solve the Financial Sector’s Problem?
The problem of the financial sector’s inadequate preparation for cyber threats has been recognized by the European Union, resulting in the DORA Regulation. This will cover all financial entities operating in the EU, which, in the view of Dariusz Świąder, CEO of Linux Polska, could significantly improve their security.
Government Administration Less Secure Than IT Industry?
Research leaves no doubt – in terms of a strategic approach to open source security, the government administration of European countries does not perform well. Only 30% of government units have a defined strategy for using open solutions (in the IT industry, this figure is 47%), and only one in ten declare any association with open source organizations[4]. According to Radosław Klewin, Senior Solutions Architect at Linux Polska, the public sector’s problem often also pertains to competency gaps.
It is estimated that nearly 2,000 cyber-attacks are carried out in Poland every week. Organizations in key sectors – public, financial, or energy– are especially at risk. Risk analysis and counteracting cyber threats should today be one of the key elements of every company’s strategy.
[1] Linux Foundation, Open Source Maturity in Europe, Milestones, Opportunities, and Pathways in 2024, p. 17
[2] Fintech Open Source Foundation, The 2024 State of Open Source in Financial Services, p. 23
[3] Fintech Open Source Foundation, The 2024 State of Open Source in Financial Services, p. 15
[4] Linux Foundation, Open Source Maturity in Europe, Milestones, Opportunities, and Pathways in 2024, p. 18
Source: https://managerplus.pl/administracja-sektor-finansowy-i-it-musza-wzmocnic-bezpieczenstwo-open-source-17957
