Connect with us

Finance

2020: THE YEAR OPERATIONAL RESILIENCE AND CYBER-RISK TAKE CENTRE STAGE IN FINANCIAL SERVICES

Miles Tappin, VP of EMEA for ThreatConnect, explores how financial providers can build a cyber security strategy that enables operational resilience

 

Financial institutions are operating in a new digital landscape. New disruptive technologies – from Artificial intelligence (AI) to crypto-currencies and big data – have driven change and innovation. In retail banking, new fintech providers have seized the opportunity to offer personalised services and challenge existing providers. For example, Klarna, has successfully disrupted the payments sector and is now established as Europe’s biggest fintech firm. It has quickly emerged as an alternative to credit cards since bursting onto scene, allowing consumers to shop now and pay later with retailers, such as H&M, Ikea and Zara.

To compete with the rising number of fintech providers and fulfil growing consumer expectations, traditional financial institutions are developing robust digital ecosystems that can deliver omnichannel service models. However, it’s becoming clear that the pace of technological change is a double-edged sword. It enables innovation and change but it is also one of the most destructive forces in the financial services ecosystem today.

 

Financial services emerge as a hotbed for cybercriminals

2020 has emerged as a defining year for cybersecurity in the financial services industry. It started with an unprecedented attack against Travelex where hackers successfully took some of the currency providers offline for nearly a month. Then came Coronavirus which sparked a new wave of malware and phishing threats. Research from VMware Carbon Black Cloud revealed that threats against financial institutions have surged by 238% since the start of the pandemic.

The renewed interest from cyber criminals comes at a time when regulators are paying close attention to the resilience of the sector. After a string of IT failures and breaches, financial organisations in the UK have been given a mandate from regulators to improve operational resilience. This means ensuring business models can withstand disruptive events from hackers or adversaries and quickly recover to protect the stability of financial systems.

In December 2019, the UK’s financial regulators published a series of consultation papers outlining their proposed approach to achieving greater operational resilience. The proposals suggested that financial institutions will be required to map out the systems and processes that support business services in order to identify any potential vulnerabilities that would pose a risk to the stability of the UK financial system or the firm’s standing.

 

A mandate for change

Where cybersecurity used to be a classic back-office concern, it’s now a central part of digital strategies and a key pillar of both reputation and customer retention – financial legislation leaves no room for failure. All financial institutions need to ensure they have full visibility of their systems and can detect any potential threats.

The challenge for financial institutions is making the security tools they have purchased separately work together in tandem. Security teams buy a firewall, an email filter, threat intelligence feeds, antivirus software or enhanced endpoint protection, and whatever else they need individually. Each of them does a good job but they don’t talk to each other and valuable time is lost tending to individual systems that become a burden to run. At the same time, running multiple security systems is expensive. The more systems you have, the more highly skilled staff you need to manage them, and they’re few and far between.

 

Improving intelligence sharing across borders and communities

To reduce complexity and simplify decision making, financial organisations need to unify processes and technology to harness the security intelligence that comes from across their own security programmes and external sources to drive down risk. However, no financial institution can tackle the problem alone. Experienced threat actors using advanced techniques are constantly targeting the financial sector. The industry needs to come together as a whole to foster a sense of collaboration and data sharing.

In the same way that financial institutions have introduced open banking to deliver a fairer service to customers, the same needs to apply to security – all parts of the financial ecosystem need to unite and share information to learn from one another and succeed in the fight against adversaries that operate across borders.

By sharing alerts on cyber hazards and risk across financial institutions and with law enforcement, government agencies and other relevant authorities, it’s possible to build industry specific insights into cyber security threats and quickly pivot to gain more information on those specific threats and threat actors. By working together, a picture can be painted on threats coming from all manner of malicious activity, from malware to ransomware, to phishing and software vulnerabilities.

 

Breaking down barriers

Having the right intelligence is not enough to ensure that intelligence is turned into action. Breaking down information and process silos across security teams allows financial organisation to analyse and act on the most pertinent information. Everyone has access to the risk and threats that matter most, and orchestration and automation of response helps overwhelmed security teams prioritise response plans and improve efficiencies in their security programme.

Integrating internal security tools and technologies, while also connecting to external sources of intelligence, creates a single source of intelligence that feeds operations and enables organisations to direct action against the threats that matter most. The outcomes of those actions further feed intelligence, providing the ability to further refine the efficacy of the entire security lifecycle.

This approach provides a continuous feedback loop for the people, processes and technologies that make up the security programme. It allows financial institutions to keep up with threat actors that have consistently adapted their methods to profit at the expense of the financial industry. Something that won’t stop anytime soon.

 

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Finance

FIDUCIARY MANAGEMENT

by Devan Nathwani, FIA and Investment Strategist at Secor Asset Management

 

Defined Benefit pension schemes are one of the most significant institutional investors, representing c.£1,700 billion[1] in assets. With investments becoming increasingly more complex, regulatory and reporting requirements increasing and markets generally being volatile, making investment decisions is taking up more of the governance budget. This has been further highlighted in the recent Covid-19 crisis where pension schemes were faced with falling equity markets, collateral calls and new investment opportunities arising from market dislocations. Corporate sponsors saw their pension scheme deficits widen at a time when free cash flow was needed to maintain working capital. There is a vast array of investment or de-risking products that claim to have low governance requirements, however often they can require giving up investment freedom and transparency or have high costs. This is where partnering with a Fiduciary Manager can help.

 

What is Fiduciary Management?

Fiduciary Management is essentially a form of delegated investment decision making. Fiduciary Managers partner with pension schemes to give advice on scheme investments and are responsible for the implementation of that advice. Fiduciary Management relationships are often highly customised and do not have to be “all or nothing”. A simple Fiduciary Management partnership could involve a Fiduciary Manager managing a fund-of-hedge-fund portfolio. A more comprehensive partnership could involve a Fiduciary Manager using their investment expertise to make investment decisions on the entire scheme portfolio. In practice, these partnerships can take many different forms and the best relationships are often highly customised, be it in the services received, the portion of the assets covered or the decisions that are delegated.

 

Devan Nathwani

Why Fiduciary Management?

Every pension scheme is different and in practice will choose to partner with a Fiduciary Manager for different reasons. Some common reasons for partnering with a Fiduciary Manager are:

Independent investment expertise

Over the last 10 years pension scheme investments have become increasingly more complex, with alternative asset classes becoming a core component of the strategic portfolio. Asset classes such as Private Equity, Private Credit and Property require in-depth knowledge of the different strategies deployed within them and often require portfolio management expertise to deal with capital calls and distributions and the sizing of commitments. Independence can be crucial here as these asset classes often carry high investment fees and require careful investment due diligence. A Fiduciary Manager typically has deep investment experience in a broad set of asset classes that a pension scheme can in-source without the cost of building an in-house team. Independence can be very important as a Fiduciary Manager that has no association with the underlying managers that a pension scheme invests with, can make investment decisions with minimal conflicts of interest.

Precision and speed

As highlighted by the market impact following the Covid-19 pandemic, it is important for pension schemes to be able to implement their investment decisions with speed and precision. Markets move every single day and investment opportunities can often arise and pass more quickly than a typical pension scheme governance structure can tolerate. Risk management is one of the most important objectives for a pension scheme, with unrewarded risks needing careful management and rewarded risks needing to be sized appropriately. Fiduciary Managers monitor their client portfolios daily and can act quickly to take advantage of investment opportunities or rebalance the portfolio as markets move.

Transparency

As regulatory requirements have increased, pension schemes are increasingly being asked to monitor their investment decisions with more scrutiny. Regulation requires them to consider Environmental, Social and Governance (ESG) factors in their investment decisions and understand the performance of their investments in detail, including the impact of explicit and implicit transaction costs. In addition, as funding levels improve, pension schemes and their sponsors are looking for tighter control and greater transparency over the scheme’s risks. This is particularly important as schemes approach their desired “End Game”. Good Fiduciary Managers typically have proprietary tools and systems that facilitate better performance and risk measurement. As regulations form and evolve, Fiduciary Managers adapt their investment decision making processes to account for them making compliance much easier.

Limited resources

Typically pension schemes and their sponsors have limited internal resources with limited time to spend on both investment and non-investment related matters. Most companies do not have dedicated pensions treasury teams so it can be difficult to devote the sufficient time that is required to both monitoring investment performance and making investment decisions. Where new asset classes are added to a pension scheme’s portfolio, additional training may be required which can take a considerable amount of time, particularly for more complex asset classes. Partnering with a Fiduciary Manager can supplement any existing governance structure by re-focusing pension scheme resources on more strategic matters.

Accountability

Pension schemes typically receive advice from investment consultants who do a good job of advising on strategic matters but are ultimately not accountable for the performance and the outcome of that advice. Pension scheme representatives are increasingly looking for their advisors to be accountable for their advice and the performance relative to the liabilities. Fiduciary Management solutions typically focus on liability relative scheme performance and are governed by the GIPS Fiduciary Management Performance Standard, to ensure a consistency in performance measurement.

Value for money

Fiduciary Management relationships are often all-encompassing and typically cover all investment related matters for the pension scheme. Through economies of scale, Fiduciary Managers negotiate more favourable asset management fees on behalf of pension schemes and are able to get schemes of all sizes access to investment opportunities that would historically only be available to larger schemes. The combination of investment expertise and accountability under a single Fiduciary Management solution, is expected to deliver better funding and performance outcomes which ultimately offers better value for money.

 

Why now?

Fiduciary Management as an investment solution is arguably more relevant today than historically. The recent crisis has highlighted the need for an investment partner who can help manage the downside risks associated with investing in equities, manage the collateral behind important hedges and take advantage of market dislocations. Many corporate sponsors will have seen their pensions contributions eroded and balance sheet deficits widened during the Covid-19 market crisis and a Fiduciary Management partner could have helped better navigate the volatility.

As corporate sponsors begin to consider the “End Game” for their DB pension scheme, they are increasingly faced with the dilemma of entering low-governance investment solutions that may be poorly constructed or paying an insurance premium to “Buy-out” the scheme.

Solutions such as Cashflow Driven Investing (CDI) tend to overemphasise portfolio construction to be based on uncertain cashflow profiles, and excessively exposing the pension scheme to risky credit allocations, which in a post Covid-19 world could expose pension schemes to adverse funding outcomes.

For corporates who prefer to avoid a large cash lumpsum payment for insurance-based buy-outs, a Fiduciary Manager can offer an alternative solution to reaching the required funding level for such a transaction to take place. By slowly growing the asset base while carefully managing risks, pension schemes can become buy-out ready allowing their sponsors to reinvest free cashflow in existing or new business lines.

Partnering with a Fiduciary Manager today could give pension schemes the tools to better manage the next crisis and offer more flexibility in reaching the desired End Game.

 

[1] The DB Landscape – Defined Benefit Pensions 2019 – The Pensions Regulator dated January 2019

 

Continue Reading

Business

TOUCH-FREE AUTHENTICATION FOR ALL: WHY WE NEED A SAFER PAYMENT METHOD IN THE ‘NEW NORMAL’

David Orme, SVP, Sales & Marketing, IDEX Biometrics ASA

 

Ever since March, when the World Health Organization encouraged people to not use cash, coronavirus has made touch-free shopping a necessity for all consumers. However, as economies across the world begin to reopen, we are seeing in-person shopping and payment via touch-pads return. So, with payments beginning to return to ‘normal’, the global payments industry must now consider an important question: how can we protect consumers from the pandemic and potential future health crisis’ during the transaction process?

During the pandemic, touch-free payments began to gain international traction across the world, changing behaviour during the payment process. While previously, consumers were happy to key in a PIN, or even provide a signature for a purchase, they are now familiar with more convenient and safer touch-free methods, and they’re not likely to let them go.

In Europe, high street chains have rapidly shifted to contactless payments, often refusing to accept cash. Meanwhile in the USA, levels of contactless payments have rocketed since the pandemic, after a slow initial adoption of the service – US banks only adopted contactless cards in 2019 compared to 2007 in the UK. According to Visa, overall contactless usage in the USA has grown 150% year-on-year as of May 2020.

Even mega-retailer, Walmart, has recently introduced contactless options for in-store shopping and delivery to protect its customers during the pandemic – showing there is growing demand for a touch-free and convenient way to pay across the world. This has raised awareness of touch-free payments among consumers looking to reduce contact-based interactions and time spent at the checkout during the pandemic.

 

Mobile payments are growing

Mobile payments are growing, again showing the desire for touch-free authentication among consumers. According to Forbes, the US mobile payment market – currently only sixth in the world – has increased 41% and is worth more than $98 billion.

To respond to the growth of touch-free payments among small vendors, PayPal has launched a new QR code-based payment app that allows market stall holders or businesses without a PoS machine to accept payment through a code. This means even the smallest of merchants, from small stores and farmer’s markets to craft sales, can now go cash-free and use touch-free payments for everything.

Meanwhile, China has long been using QR code-based apps, such as WeChat Pay from tech giant TenCent and AliPay from Alibaba. The apps are so widely used that street vendors display QR codes for payments and together the two fintech giants control about 90% of China’s digital payments market.

 

But card is still king

At the same time, payment cards are still consumers preferred way to pay. Of course, we only need to look to Apple and Google, who recently have launched physical payment cards despite running mobile payment apps for further proof that payment cards are far from dead.

So why aren’t cards on their way out, given the growth of mobile payments?

We know that consumers still look to payment cards for security and a sense of familiarity while shopping. According to IDEX Biometrics’ research carried out in the UK, only 3% of consumers choose to use mobile payments, while nearly two-thirds (65%) state that carrying their debit card provides a sense of security. And when it comes to touch-free payments, only biometric payment cards can provide the most secure level of validation with an easy digital experience for shoppers.

Despite the popularity of WeChat as a payment app, China’s biggest card provider China UnionPay has recognised that its customers aren’t ready to give up on physical payment cards either. China UnionPay has recently certified the first biometric fingerprint card technology in the country as they look to the use of biometric technology in cards to provide an extra layer of security, with added convenience and hygiene during a payment transaction.

 

Secure touch-free card payments

Biometric fingerprint payment cards provide end-to-end encryption – securing the user’s card and data. A fingerprint biometric card allows the user to authenticate their ID by touching their finger to the card’s sensor while holding it over the contactless card machine. Therefore the shopper only has to hold their own card over the PoS system and the entire transaction process is free of public PIN pads or checkout counters – making it no different to how consumers currently use contactless payments cards. This touch-free payment technology provides the consumer with the convenience of contactless or a mobile payment but with far greater security, as the card is personally tied to the owner.

Biometric identification is already firmly incorporated into our everyday lives. Thanks to unlocking our phones and authenticating payment apps, we are increasingly using our fingerprint to verify our identity. Now that consumers are familiar with the technology, biometric identification in payment cards will become essential to help consumers navigate the shopping and transaction process safely, speedily and securely.

As our economy gradually reopens, financial services providers must protect consumers during the transaction process. In stores, on transport systems – even in stadiums – a fingerprint biometric payment card will provide touch-free payment authentication for all.

 

Continue Reading

Magazine

Partner Events

Trending

Wealth Management1 day ago

DON’T RISK IT ALL WITH NON-COMPLIANCE

By Paul Sleath, CEO at PEO Worldwide   Did you know non-compliance costs more than twice the cost of maintaining or...

News2 days ago

BANKIA TRANSFORMS THE CUSTOMER AND EMPLOYEE EXPERIENCE WITH BIANKA BY IPSOFT

Developed with cognitive artificial intelligence, IPsoft’s conversational agent can carry out transactional tasks, perform different roles in customer service and...

Finance2 days ago

FIDUCIARY MANAGEMENT

by Devan Nathwani, FIA and Investment Strategist at Secor Asset Management   Defined Benefit pension schemes are one of the most significant institutional...

Business2 days ago

TOUCH-FREE AUTHENTICATION FOR ALL: WHY WE NEED A SAFER PAYMENT METHOD IN THE ‘NEW NORMAL’

David Orme, SVP, Sales & Marketing, IDEX Biometrics ASA   Ever since March, when the World Health Organization encouraged people to...

Banking2 days ago

WHY BANKS NEED TO EMBRACE OPEN SOURCE COMMUNITIES

Nikolai Stankau, Director Business Development, EMEA Financial Services at Red Hat, the world’s largest enterprise open source solutions provider.  ...

FINANCIAL MARKET FINANCIAL MARKET
Wealth Management2 days ago

FOR PE TO SNAP UP “GOOD” COMPANIES, THEY MAY NEED TO WADE INTO “BAD” ECONOMIES

By  Martin Soderberg, Partner at SPEAR Capital   There’s no shortage of global challenges for investors currently, especially for those...

Business3 days ago

THE BASICS OF BUSINESS FINANCE

When you’re starting your business, you’ve got a lot to be thinking about. You need to find affordable suppliers, market...

Business3 days ago

HOW THE IMPORTANCE OF E-COMMERCE PLATFORMS GREW DURING THE PANDEMIC

Never in history has the world relied more on the internet than during this Covid-19 pandemic. With governments imposing lockdowns...

Business3 days ago

UNBANKED AND UNCONNECTED: SUPPORTING FINANCIAL INCLUSION BEYOND DIGITAL

Darren Capehorn, Director, Icon Solutions   Many of us take it for granted, but accessing basic financial services is fundamental...

Banking5 days ago

MORE THAN REGULATION – HOW PSD2 WILL BE A KEY DRIVING FORCE FOR AN OPEN BANKING FUTURE

Ralf Ohlhausen, Executive Advisor, at PPRO   Whilst initially seen as simply a regulation exercise, the second Payment Service Directive,...

Top 105 days ago

TIME TO THINK OUTSIDE OF THE BLACK BOX

Mike Brockman, CEO, ThingCo   If you have the unbridled joy of parenting a teenager you’ll probably know what telematics...

Banking5 days ago

BANKING’S SECOND WAVE OF TRANSFORMATION: INTEGRATING THE CLOUD-ENABLED FUTURE BANK

Keith Pearson, Head of Financial Services EMEA, ServiceNow   The last six months have seen significant changes to the financial services landscape, with operational resilience, economic recovery, cost reduction and an...

News5 days ago

RISK AND INVESTMENT SPECIALIST, CARDANO, TAKES TO DOCUMENT AND EMAIL MANAGEMENT IN THE CLOUD WITH ASCERTUS AS IMPLEMENTATION PARTNER

Ascertus also providing document comparison tool, compareDocs    Cardano, a privately-owned, purpose-built risk and investment specialist, has chosen Ascertus Limited as its implementation...

Wealth Management1 week ago

HOW SALARY SLIPS HELP YOU UNDERSTAND TAX DEDUCTIONS ON YOUR SALARY

A salary slip is defined as a document that is provided by your employer which contains the breakdown of your...

Banking1 week ago

BRANCHES ARE THE HUMAN FACE OF YOUR BANK?

Sudeepto Mukherjee, Senior Vice President, Financial Services Lead EMEA & APAC Publicis Sapient   Branches have always played a pivotal...

News1 week ago

RISE IN E-COMMERCE FOR SMALL BUSINESSES IS A BIGGER RISK THAN JUST STOCK CONTROL

With consumer confidence in the high street at an all-time low, many SME shops and businesses have moved to online...

Finance1 week ago

TIME TO FOCUS ON YOUR ‘WEALTHBEING’

Tony Mudd, Divisional Director, Development & Technical Consultancy. St James’s Place   FIVE WAYS TO SAFEGUARD YOUR FINANCIAL FUTURE The...

COVID-19 COVID-19
Finance1 week ago

PAYROLL AGILITY IN THE CORONAVIRUS CRISIS – HOW FINANCE FIRMS CAN ACHIEVE IT

by Hannah Grimshaw, BPO Payroll Lead, Symatrix   The government has published guidance with regards to the next steps for...

Business1 week ago

WHY IT’S TIME TO ADAPT TO THE VIRTUAL WORLD: HOW TO MASTER ONLINE NEGOTIATIONS

By Tony Hughes, CEO at Huthwaite International, a leading global provider of sales, negotiation and communication skills development   Virtual...

News1 week ago

BNP PARIBAS PERSONAL FINANCE COLLABORATES WITH EXPERIAN AND ARYZA TO HELP CUSTOMERS THROUGH THE COVID-19 PANDEMIC

The consumer finance specialist will be using the Open Banking tool to help customers create an affordable payment plan based...

Trending