News & views

Surveillance: Readying for the Seismic Shift

To date the overriding priority of surveillance in Financial institutions has been one of coverage, but a seismic shift is upon us.

Matt Pockson, Principal at DMW, kicks off the first in a series of articles addressing the challenges faced in risk management and threat mitigation within Financial Services institutions.

Our financial markets and institutions perform a major role as part of the world’s key global infrastructure and are integral to the successful operation of global and local economies.

But with this influence, comes great responsibility. Regulators, customers, employees and wider society demand that banks and other financial institutions do not allow this global influence to be abused. They demand that financial products and services are not used to facilitate financial crime, that global operations are not exploited by collusive networks to cheat, fix and destabilise markets, and that individual traders are held to account for their actions and prevented from unauthorised activity.

The monitoring and surveillance functions of financial institutions have been working to strengthen control environments, triggered by the prevalence of regulatory fines, evidence of financial crime activity, and, more fundamentally, simply as part of doing the right thing in shaping institutional culture.

To do this effectively requires the constant balancing of multiple priorities – front to back environments don’t stand still. And so must monitoring and surveillance functions continually adapt and evolve. For surveillance, the demand factors are wide and varied, and include internal audit and advisory functions, external regulatory demands, changing regulation, developing and new areas of business and regions of operation, as well as keeping pace across the industry as a whole, not just one’s own institution. Meeting today’s requirements whilst being ready for tomorrow’s!

To date the overriding priority of monitoring and surveillance has been one of coverage – of risks, regions, businesses, staff and customer populations through the deployment of specific controls, often in the form of systems, procedures and people in a data channel or risk silo, as an integral part of the three lines of defence.

There are advantages to this approach, most significantly it being easy to demonstrate coverage of risks across regions, staff and customer populations, business lines, products and data channels, by simply mapping controls against a risk taxonomy. Furthermore, narrowly focused procedures can be operationalised and evidenced, and activities audited. This also makes it easier to offshore to lower cost centres.

But there are significant downsides too. This approach generates huge volumes of systems alerts and requires an army of surveillance officers to process the resulting backlog. This vast sea of false positives is just one issue to be tackled. With each data domain deploying their own coupled ‘stack’ of data, systems, users and processes, and purporting to control the risk, there are also questions around whether this is the most effective way to identify the full risk picture, and whether more insight can be generated, and more efficiently, by a more integrated approach.

There are also limitations to business agility. Siloed solution stacks are inherently tightly coupled and often rely on ‘black box’ technology, making changes hard and costly in an environment that demands frequent change. The lack of transparency within and across these silos limits the ability for the FI to analyse its own data effectively, the barriers between systems effectively reinforcing the siloed approach. Today’s systems and controls solve point problems, and possibly many times over, where a more integrated approach could not only deliver more insight, but enable efficiency savings in both ‘Change The Bank’ (CTB) and ‘Run The Bank’ (RTB) costs.

This approach of implementing a specific system with a set of narrow controls needs to be confined to history.

The pressure is building and a seismic shift in surveillance is upon us.

Our second article in the series on Financial Market Abuse and Conduct Surveillance is now live, and in future articles I’ll explore some of these challenges as well as techniques and solutions to keep ahead of the impending ground shift.

We've creating a hub of information on our intelligence-led risk transformation approach that can help in the redefinition of your compliance or surveillance operating model, define a future technology target state and help navigate the vendor selection minefield, as well as optimise your surveillance business processes and support your cultural shift. To talk to us please use the contact us form.

ILRTSeismicShiftSocialMediaImage-1

Matt Pockson

Principal

Articles

Financial Market Abuse and Conduct Surveillance

A multi-faceted approach to transformation is needed in Financial institutions to combat financial market abuse.

Read more

Stop trying to tame the data beast and learn to herd data critters

“The world’s most valuable resource is no longer oil, but data.” – The Economist, 2017  

Read more

Why celebrating Pride is more than just a banner at DMW

June is international Pride month, where we celebrate LGBT (Lesbian, Gay, Bisexual and Transgender) identities and highlight the work ...

Read more

Disrupt the digital challengers with transformation mindset

Transformation can no longer be seen as a one-off project, and for organisations to survive, it is becoming the new norm.

Read more

DMW on G-Cloud Framework

DMW delivers complex cloud migrations to public and private sector clients, supplying public sector organisations via the G-Cloud 11 ...

Read more

DMW welcomes... Naya Giannakopoulou

Happy International Women's Day! Over the course of recent months we have been delighted to welcome more brilliant women into the DMW ...

Read more

Helping our customers harness the power of cloud

We’re delighted to boost our cloud computing credentials with the announcement that we are now a Standard Consulting Partner in the AWS ...

Read more

DMW welcomes... Hani Qadiri

As DMW continues to grow at a blistering pace, we are welcoming more DMWers through the door than ever. Here is the first in a series of ...

Read more

The Cloud Brick Wall, Part 3 of 3

In the first two blog articles of our series from Konrad Petrusewicz, we started by covering the fundamental challenge of building a ...

Read more

CTO hot take from AWS re:Invent 2018

As the DMW Group team jet back from AWS re:invent, Amazon Web Services major cloud technology event in the states, we offer their ...

Read more

The Cloud Brick Wall, Part 2 of 3

An essential component of any Cloud migration is the actual code base that needs to be run and understanding how it operates within the ...

Read more

AWS re:Invent 2018 Keynote Hot Take

DMW are at AWS re:Invent 2018, the leading cloud technology event from Amazon Web Services in Las Vegas this week. Here’s our take on ...

Read more

The Cloud Brick Wall, Part 1 of 3

The Cloud Brick Wall is approaching. In this 3-part series of blog articles Konrad Petrusewicz maps out how to break through the brick ...

Read more