Safety and Security

Goldman Sachs’ Cybersecurity Training Utilizes War Games

Goldman Sachs is using cyber security war games so that its technology staff will better learn how to fight and prevent threats that could harm the bank and its clients.

According to the Financial Times, Goldman is the first financial institution to sign up with U.K.-based Immersive Labs, which offers learning tests and war games on cyber threats.

Immersive was able to create a tool just four hours after the WannaCry malware attack became public that enabled users to analyze how the ransomware behaved so they could create prevention antidotes.

All of Goldman’s 8,000 technology employees will be granted access to the platform so they can test their skills against colleagues and compete on a company-wide league table.

“Threats are emerging all the time — the challenge is to find a company that can keep as current as we are,” said Jo Hannaford, head of technology for Europe, the Middle East and Africa at Goldman.

While Goldman probably would not make the program mandatory, Hannaford said she “could see a scenario where a particular issue arose and we wanted everybody to understand it,” therefore making a specific test obligatory.

In addition, there won’t be any financial incentives given for those who perform well in the labs. Goldman also won’t use the feedback as part of its performance evaluation on its technology employees.

“We want people to do these things for the right reasons, and the incentive obviously should be learning,” she said. She added that the company’s programmers are already “so hungry for information.”

Hannaford also said that Goldman hopes other banks will follow suit. “We all need to continue to collaborate with other firms on this,” she said. “There’s no competitive advantage here, the advantage is we stop this form of crime . . . by doing this, hopefully we can help create a platform which helps us in that direction.”



Digital transformation has been forcefully accelerated, but how does that agility translate into the fight against COVID-era attacks and sophisticated identity threats? As millions embrace online everything, preserving digital trust now falls mostly on banks and FIs. Now, advances in identity data and using different weights on the payment mix afford new opportunities to arm organizations and their customers against cyberthreats. From the latest in machine learning for fraud and risk, to corporate treasury teams working in new ways with new datasets, learn from experts how digital identity, together with advances like real-time payments, combine to engender trust and enrich relationships.