Financial services sector has long been presumed to practice superior information security because of the preciousness of its assets and the fact that its business is carried out almost entirely on IT systems. Financial services companies have bigger security budgets, but not necessarily bigger vis–vis the overall IT budget. Financial companies are slightly more likely to use ROI and contribution to business objectives as justifications for security investments, they are still likely to rely on legal and regulatory requirements, liability and revenue impact to justify their investments.”]
Source: https://www.csoonline.com/article/2119466/safe-deposits.html