In the era of digital financial innovation, the importance of financial security is being emphasized day by day as the financial sector expands its use of technologies such as the Internet of Things(IoT), Cloud, BigData, and Artificial Intelligence(AI). Financial security refers to Fintech security and involves establishing and operating an integrated security control system against cyber threats that take advantage of security vulnerabilities resulting from the introduction of innovative technologies, responding to intrusion incidents, and analyzing and assessing vulnerabilities. In particular, security risks are emerging as cloud services are utilized throughout the financial industry, and financial security control and abnormal financial transaction detection are being advanced by applying AI technology. Additionally, in the financial sector, data security and information protection are emerging as very important issues in the era of the MyData platform. As the MyData service expands, where a large number of personal information is concentrated in one place, the threat of personal information infringement due to indiscriminate information collection and service hacking is also increasing. Accordingly, it is necessary to strengthen personal information protection within the MyData service and increase awareness of cyber security and financial security. Against this background, this study first examines changes in the security environment of the financial sector (internal control and abnormal financial transaction detection) and the components of the integrated security control system. Next, we would like to derive security threats to the financial sector such as phishing and smishing using social engineering techniques, authentication information theft, Ransomware, Emotet, Soggolish, BEC, and TOAD. Lastly, in relation to cyber security policies in the financial sector, we would like to discuss countermeasures against Ransomware in the financial sector, plans to build a next-generation financial security control system, MyData information protection and information security, and the applicability of the Zero Trust model in the financial sector.