Financial services firms are still struggling to secure data effectively, an IT firm has warned days after the regulator hinted at new supervisory work in the field.