Gen AI in Financial Cybersecurity: A Comprehensive Review of Architectures, Algorithms, and Regulatory Challenges

Satyadhar  Joshi

doi:10.69968/ijisem.2025v4i373-88

Authors

Satyadhar Joshi Independent Researcher Alumnus, International MBA, Bar-Ilan University, Israel Alumnus, Touro College MSIT, NY, USA.

DOI:

https://doi.org/10.69968/ijisem.2025v4i373-88

Keywords:

Cybersecurity, Generative AI, Artificial Intelligence, Financial Sector, Risk Management, Financial Institutions, AI Governance, Regulatory Compliance, Cyber Threats

Abstract

This paper provides a comprehensive review of the intersection of cybersecurity, generative AI, and risk within the financial sector. We explore how AI is being leveraged for both defensive and offensive purposes, the emerging threats posed by GenAI, and the critical need for robust risk management frameworks and regulatory guidance. This paper reviews the intersection of cybersecurity, generative artificial intelligence (AI), and risk management in the financial sector. We examine the dual role of AI as both a tool for enhancing cybersecurity defenses and a vector for sophisticated cyber threats. The paper analyzes regulatory responses, emerging best practices, and the evolving threat landscape, with particular attention to generative AI’s impact on financial institutions’ risk profiles. We synthesize insights from recent industry reports, regulatory guidance, and academic literature to provide a comprehensive overview of current challenges and future directions in this critical domain. This paper presents a comprehensive review of AI-driven cybersecurity framework designed for financial institutions, integrating data analysis, risk assessment, and decision-making processes. The frameworks reviewed are structured around the DIKW (Data, Information, Knowledge, Wisdom) pyramid, which transforms raw data into actionable insights through natural language processing (NLP) and thematic extraction. Key components include a modular system architecture that processes data from multiple sources (e.g., transaction logs, threat feeds) using AI models, a risk engine for scoring threats, and a decision tree for implementing mitigation strategies. Anomaly detection is achieved through Isolation Forest and auto encoder models, with thresholds (τ = 0.6 and τ = 0.5, respectively) calibrated to balance sensitivity and specificity. The decision logic incorporates rules such as automatic blocking for high- risk transactions (scores ¿ 0.95) and multi-factor authentication (MFA) for non-whitelisted locations. Visualizations demonstrate the system’s effectiveness in identifying and responding to threats while maintaining regulatory compliance.

References

[1] International banker, "Artificial Intelligence: Opportunities and Risks for the Financial Sector," Dec. 2024. https://internationalbanker.com/technology/artificial-intelligence-opportunities-and-risks-for-the-financial-sector/

[2] A. Hunter, "Cybersecurity Threats to Financial Services Emerge with Growth of AI," Oct. 2024. https://www.intelligize.com/cybersecurity-threats-to-financial-services-emerge-with-growth-of-ai/

[3] N. P. Uppari, "AI's Dual Role in FinServ Risk Management," Mar. 2025, section: Financial Services. https://www.corporatecomplianceinsights.com/ai-dual-role-finserv-risk-management/

[4] E. D. Mortimore, Matti, "NYDFS Issues Guidance to Mitigate AI Cybersecurity Risks," Nov. 2024. https://www.bytebacklaw.com/2024/11/nydfs-issues-guidance-to-mitigate-ai-cybersecurity-risks/

[5] D. M. Eng, S. Kuruvilla, D. M. Eng, and S. Kuruvilla, "New York Department of Financial Services provides AI cybersecurity guidance: what you need to know," Reuters, Nov.2024. [Online]. Available: https://www.reuters.com/legal/legalindustry/new-york-department-financial-services-provides-ai-cybersecurity-guidance-what-2024-11-15/

[6] "How Is Your Financial Institution Managing AI Cybersecurity Risks?" [Online]. Available: https://www.ncontracts.com/nsight-blog/ai-cybersecurity-risks

[7] "3 Hidden Risks of AI for Banks and Insurance Companies." https://www.lumenova.ai/blog/risks-of-ai-banks-insurance-companies/

[8] "AI and the Future of Risk Management in Financial Institutions." [Online]. Available: https://www.xenonstack.com/blog/risk management-in-financial-institutions

[9] "Key Use Cases of AI in Risk Management." https://safe.security/resources/blog/key-use-cases-ai-risk-management/

[10] "The Role of AI in Risk Management for Enterprises." https://www.solulab.com/ai-in-risk-management/

[11] "What is AI in Risk Management? Steps to Get Started." https://www.metricstream.com/learn/ai-risk-management.html

[12] "AI in Financial Modeling: Applications, Benefits, and Development." https://corporatefinanceinstitute.com/resources/data-science/ai-financial-modeling/

[13] "AI Systems Elevate Cybersecurity and Data Risks; Protiviti-IIA Survey Reveals Growing Technology Concerns | Protiviti US." [Online]. Available: https://www.protiviti.com/us-en/press-release-ai-systems-elevate-cybersecurity-and-data-risks

[14] PYMNTS, "Adoption of AI in Cybersecurity Grows, but Experts Say Risks Remain High," Jan. 2025.https://www.pymnts.com/cybersecurity/2025/adoption-of-ai-in-cybersecurity-grows-but-experts-say-risks-remain-high/

[15] "Cybercriminals Are Using AI to Target Your Finances - BMO WealthManagement." https://uswealth.bmo.com/insights/cybercriminals-are-using-ai-to-target-your-finances

[16] "LLMs are guessing login URLs, and it's a cybersecurity time bomb." [Online]. Available: https://www.csoonline.com/article/4015404/llms-are-guessing-login-urls-and-its-a-cybersecurity-time-bomb.html

[17] M. E. Biery, "Mitigating AI-enhanced cybersecurity risks for financial institutions," Oct.2024. https://www.abrigo.com/blog/mitigating-ai-enhanced-cybersecurity-risks-for-financial-institutions/

[18] "How can you protect your privacy, money from AI?"https://www.cmich.edu/news/details/how-can-you-protect-your-privacy-money-from-ai

[19] "Understanding AI Cybersecurity Risks and How to Mitigate Them." https://www.harbortg.com/blog/understanding-ai-cybersecurity-risks-and-how-to-mitigate-them

[20] T. Krakowczyk, "The Role of AI and Cybersecurity in the Financial Sector https://softwaremind.com/blog/the-role-of-ai-and-cybersecurity-in-the-financial-sector/

[21] "Your AI Technology Partner Could Be a Security Trojan Horse," Jun. 2025. https://thefinancialbrand.com/news/artificial-intelligence-banking/your-ai-technology-partner-could-be-a-security-trojan-horse-190540

[22] R. Abbas, "Strengthening Financial Services with Third-Party Risk Mitigation Strategies - Cybersecurity Magazine," Feb. 2025. https://cybersecurity-magazine.com/strengthening-financial-services-with-third-party-risk-mitigation-strategies/

[23] "Top 5 Cybersecurity Automation Tools Transforming Risk Management." https://www.cybersaint.io/blog/top-5-cybersecurity-automation-tools

[24] "The Compliance Risks of Using Generative AI in a Financial Planning Practice | Financial Planning Association," May 2025. [Online]. Available: https://www.financialplanningassociation.org/learning/publications/journal/MAY25-compliance-risks-using-generative-ai-financial-planning-practice-OPEN

[25] "ISACA Now Blog 2024 AI and Risk Management A Strategic Guide for CIOs and CISOs in Financial Services." https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2024/ai-and-risk-management-a-strategic-guide-for-cios-and-cisos-in-financial-services

[26] M. E. A. Finance, "New DFSA report explores regulatory insights into cybersecurity, Artificial Intelligence, and quantum risks." Jun. 2025. [Online]. Available: https://mea-finance.com/new-dfsa-report-explores-regulatory-insights-into-cybersecurity-artificial-intelligence-and-

[27] "DFSA report flags mounting risks from AI, quantum computing." https://www.khaleejtimes.com/business/dfsa-report-flags-mounting-risks-from-ai-quantum-computing

[28] "How Agentic AI-Driven Cybersecurity Prevents Financial Cyber Threats." [Online]. Available: https://www.akira.ai/blog/ai-agents-for-cybersecurity-in-finance

[29] "Cybersecurity in banking: Trends and tactics for 2025 |Baker Tilly." [Online]. Available: https://www.bakertilly.com/insights/cybersecurity-in-banking-trends-and-tactics

[30] J. C. Crisanto, C. B. Leuterio, J. Prenio, and J. Yong, Regulating AI in the financial sector: recentdevelopments and main challenges, ser. FSI insights on policy implementation. Basel: Bank for International Settlements, Financial Stability Institute, 2024, no. no 63.

[31] "AI in Finance | Fraud Protection, Trading & Risk Management," Oct. 2024, section: Blog. [Online]. Available: https://bolster.ai/blog/the-evolution-of-finance-ais-growing-influence

[32] "AI for the CRO: Transforming AI governance, compliance and security." [Online]. Available: https://rsmus.com/insights/services/digital-transformation/ai-for-the-cro.html

[33] "AI Risks: Insurance & Cybersecurity Implications for Private Equity." [Online]. Available: https://www.risk-strategies.com/blog/ai-risks-insurance-cybersecurity-implications-for-private-equity

[34] "Risks and Strategies for AI Cybersecurity Risks: Key Takeaways from NY DFS Letter | NETBankAudit."https://www.netbankaudit.com/resources/ai-cybersecurity-risks-dfs-letter-october-2024

[35] C. S. M. M. M. Harden, Ashden Fein, "NYDFS Issues Industry Guidance on Risks Arising from Artificial Intelligence," Nov. 2024. https://www.insideprivacy.com/artificial-intelligence/nydfs-issues-industry-guidance-on-risks-arising-from-artificial-intelligence/

[36] "AI in Banking: Real Use Cases and Industry Applications," Jan. 2022. [Online]. Available: https://appinventiv.com/blog/ai-in-banking/

[37] SoftDesign and P. Seyffert, "Artificial Intelligence in Financial Services: applications and advantages," Feb. 2025. [Online]. Available: https://softdesign.com.br/en/blog/artificial-intelligence-in-financial-services-applications-and-advantages/

[38] "Leveraging AI in Financial Services | DivergeIT." [Online]. Available: https://www.divergeit.com/blog/ai-in-financial-services

[39] "The Role of Artificial Intelligence in Risk Management for Financial Institutions - Nawadata Blog," Feb. 2025. [Online]. Available: https://nawadata.com/blog/the-role-of-artificial-intelligence-in-risk-management-for-financial-institutions/

[40] "Risk Reducing AI Use Cases for Financial Institutions." [Online]. Available: https://www.netguru.com/blog/risk-reducing-ai-use-cases-financial-institutions

[41] "5 AI Case Studies in Risk Management |VKTR." [Online]. Available: https://www.vktr.com/ai-disruption/5-ai-case-studies-in-risk-management/

[42] "How Banking Leaders Can Enhance Risk and Compliance With AI," Dec. 2024. [Online]. Available:https://thefinancialbrand.com/news/artificial-intelligence-banking/how-banking-leaders-can-enhance-risk-and-compliance-with-ai-183094

[43] "Artificial intelligence in cybersecurity - Article." [Online]. Available: https://www.sailpoint.com/identity-library/artificial-intelligence-cybersecurity

[44] "AI in Cyber Security: Top 6 Use Cases - TechMagic," Aug. 2024.[Online]. Available: https://www.techmagic.co/blog/ai-in-cybersecurity/

[45] G. Author, "How AI Agents in Financial Services Boost Risk Management, Automation." https://www.cm-alliance.com/cybersecurity-blog/how-ai-agents-in-financial-services-boost-risk-management-automation

[46] B. C. Group, "Financial Institutions May Rely on Third Parties for Social Security, Taxpayer Identification Numbers," Jun. 2025. [Online]. Available: https://www.consumerfinancemonitor.com/2025/06/30/financial-institutions-may-rely-on-third-parties-for-social-security-taxpayer-identification-numbers/

[47] M. Hipolito, "AI Cloud Workloads Face Greater Critical Security Risks." [Online]. Available: https://securitybrief.com.au/story/ai-cloud-workloads-face-greater-critical-security-risks

[48] "Taking a Business-Critical Approach to Supplier Nth-Party IT Risk Management | McKinsey." [Online]. Available: https://www.mckinsey.com/capabilities/risk-and-resilience/our-insights/taking-a-business-critical-approach-to-supplier-nth-party-it-risk-management

[49] "New York Department of Financial Services Guidance on AI-Related Cybersecurity Risks | Saul Ewing LLP," Oct. 2024. [Online]. Available: https://www.saul.com/insights/alert/new-york-department-financial-services-guidance-ai-related-cybersecurity-risks

[50] Isaperl, "AI and Finance: Risks and Regulation Impact," Jul. 2024. [Online]. Available: https://naaia.ai/ai-finance-risks-regulation/

[51] "AI and Regulatory Risks: What FIs Need to Know | Ncontracts." [Online]. Available:

https://www.ncontracts.com/nsight-blog/ai-and-regulatory-risks

[52] "New York State Department of Financial Services Releases Guidance on Combating Cybersecurity Risks Associated With AI," Nov. 2024. [Online]. Available: https://ogletree.com/insights-resources/blog-posts/new-york-state-department-of-financial-services-releases-guidance-on-combating-cybersecurity-risks-associated-with-ai/

[53] T. |. W. Dubai, "DFSA | New DFSA Report Explores Regulatory Insights into Cybersecurity, Artificial Intelligence, and Quantum Risks." [Online]. Available: https://www.dfsa.ae/news/new-dfsa-report-explores-regulatory-insights-cybersecurity-artificial-intelligence-and-quantum-risks

[54] "Regulatory Approaches to Artificial Intelligence in Finance," OECD Artificial Intelligence Papers 24, Sep. 2024. [Online]. Available: https://www.oecd.org/en/publications/regulatory-approaches-to-artificial-intelligence-in-financef1498c02-en.html

[55] "2024 Volume 16 Applying Risk Appetite and Risk Tolerance in the Age of AI." [Online]. Available: https://www.isaca.org/resources/news-and-trends/newsletters/atisaca/2024/volume-16/applying-risk-appetite-and-risk-tolerance-in-the-age-of-ai

[56] T. M. Incorporated, "AI on the Frontline: Global Firms Back Innovation, Brace for New Cyber Threats." [Online]. Available: https://www.prnewswire.com/news-releases/ai-on-the-frontline-global-firms-back-innovation-brace-for-new-cyber-threats-302496072.html

[57] "AI on the Frontline: Global Firms Back Innovation, Brace for New Cyber Threats - Company Announcement," Jul. 2025

https://markets.ft.com/data/announce/detail?dockey=600-202507011455PRNEWSUSPRXSF22559-1

[58] A. I. P. Ltd, "Global Cybersecurity Market to Worth Over US$723.8 Billion By 2033," Jun. 2025. [Online]. Available:

https://www.globenewswire.com/news-release/2025/06/30/3107676/0/en/Global-Cybersecurity-Market-to-Worth-Over-US-723-8-Billion-By-2033-North-America-Dominates-Asia-Pacific-Accelerates-Europe-Consolidates-Emerging-Markets.html

[59] V. Sekhar and B. Hobbs, "Banking Risks from AI and Machine Learning," Ernst & Young LLP. [Online]. Available: https://www.ey.com/en_us/board-matters/banking-risks-from-ai-and-machine-learning

[60] "AI and Enterprise Risk Management: What to Know in 2025," Apr. 2025. [Online]. Available: https://blog.workday.com/en-us/ai-enterprise-risk-management-what-know-2025.html

[61] "AI and Financial Stability: Mitigating Risks, Harnessing Benefits." [Online]. Available: https://www.brookings.edu/articles/ai-and-financial-stability-mitigating-risks-harnessing-benefits/

[62] "Are New Gen AI Tools Putting Your Business at Additional Risk? | IBM," Sep. 2024. [Online]. Available: https://www.ibm.com/think/news/are-new-genai-tools-putting-your-business-at-risk

[63] "How AI is Changing the Cyber Security Landscape in Finance." [Online]. Available: https://www.checkpoint.com/cyber-hub/cyber-security/what-is-ai-security/how-ai-is-changing-the-cyber-security-landscape-in-finance/

[64] M. Hovsepian, "Davos 2025: Financial Services Embrace AI and Cybersecurity for a Resilient Future," Jan. 2025. [Online].

[65] "Top five risks for financial institutions in 2025." [Online]. Available: https://www.wtwco.com/en-us/insights/2025/03/ top-five-risks-for-financial-institutions-in-2025

[66] "Navigating Operational Risks: CPS 230's Influence on AI and Cybersecurity Strategies." https://www.cliffordchance.com/content/cliffordchance/insights/resources/blogs/regulatory investigations-financial-crime-insights/2025/04/cps-230-influence-on-ai-and cybersecurity-strategies.html

[67] M. A. J. D. Earp-Thomas, Mehul Madia, "Treasury Highlights AI's Potential and Risks in Financial Services," Jan. 2025. [Online]. Available: https://www.consumerfinanceandfintechblog.com/2025/01/treasury-highlights-ais-potential-and-risks-in-financial-services/