Dirk Anderson, Head of Professional Services at RedPixie
The banking and finance sector has created an IT “crutch” over the last few years. It is now limping behind more agile competitors from a technology standpoint. There has been a huge investment in research and development and engineering initiatives in many of the banks but some of these initiatives have failed or are doomed to failure because the people leading them are trying to deliver against a challenging backdrop of bloated legacy process, bureaucratic cultures, organisational inefficiency, compliance and security fears. The result is that many initiatives are crippled from the start.
Initiatives will simply stall and end up in the “too hard” bucket. This is not because it’s too difficult technically, but more so because of the banks organisational make-up. The IT challenge facing the sector is the fear that exists in making any important changes. Significant IT change that might represent a risk to IT operational stability is scrutinised heavily and even changes that represent small risks with limited impact are revoked, delayed or become difficult to pass through the red tape. This often leads to IT teams taking the path of least resistance.
For example, many banks are wisely investing heavily in cloud technologies. But the fear created by the compliance and security teams is the biggest single roadblock. Questions such as:
- “Will my customer’s data really be safe in this cloud provider’s data centre?”
- “Will my data remain where I put it or will it end up somewhere else on the planet?”
- “How do I really know that my data is secure?”
- “What if the cloud provider’s staff can get to my data?”
The reality is this:
- The data centre facilities provided by the largest cloud providers, including Amazon, Microsoft and Rackspace benefit from enhanced: physical security, architecture, management process and industry standards than many of the global banks data centres.
- All the major cloud service providers support multiple layers of authentication to access data and services.
- All data travelling to and from the cloud providers’ data centre facilities can be encrypted at the highest levels.
- The banks can choose the levels of encryption for data “at rest” within the cloud providers data centre using either encryption methods the cloud providers offer or by applying their own encryption standards to the data they store in the cloud.
In short, the data residing in a major cloud provider’s data centre can be made as secure and in many cases more secure than the data centre facilities provided by the banks themselves. While the banks are stalling on the “is this secure” and “how do I keep control” question, more nimble organisations are rapidly consuming ready-made services from the Cloud and using smart measures to ensure that they protect their own data as well as their customers’ data.
The banks need to review their IT strategies for the long term to ensure that strategies are clearly aligned to the banks business strategies. Some IT departments within banks have become so large and dispersed that that the IT teams appear to have forgotten that they work in a banking business and not an IT business. A bank exists to look after its customer’s money and to invest that money wisely and safely. The recent banking crisis has resulted in a level of scrutiny that the banks are not accustomed to. IT exists to support the banks strategy and to run its processes. That’s it.
The key thought process of any banking CIO today must be “how do I build a strategy that supports the bank’s business strategy”. First and foremost it is about providing service. Secondly it’s about partnering with the business in a way that technology innovation supports the broader strategy. Key considerations for banking CTOs or CIOs include:
- How do I provide the core services in a secure, reliable way whilst keeping the operating costs low?
- How do I readily embrace services and technologies from third parties and avoid building legacy systems?
- How do I put myself at the heart of the business strategy as a partner to develop an intimate appreciation of the banks goals?
- How do I effect organisational change within my own IT organisation to break old habits and generate a brave new culture of significant change that aligns to the banks goals?
- How do I review all the commodity processes that make the legacy IT system what it is today so the change team and I understand the inefficiencies and know the change priorities?
We have seen many real life examples of issues in IT operations teams in the financial industry such as:
- Average time to set up a new joiner with standard IT “stuff” such as account, mailbox, desktop and applications after the user has joined – 10 days
- The number of times a support issue is passed between IT queues before it got to a support person who could fix what was a really common issue – 94 times
- Average time to get a new virtual server in the data centre – 12 weeks
These are only examples, and not every bank has such inefficiencies, however in large organisations, there are issues to address. If you were to count the real cost of having thousands of staff each waiting two weeks to start working in a large global bank, the costs are eye-watering. IT departments in the financial industry have to take action – and either consume more ready-made IT services such as cloud services, or start operating like cloud providers.
In this day and age, the provision of commodity services should happen at the push of a button and the button should be pressed by the business person, not an IT person. Process and culture need to be changed so that the banking and finance sector can regain their competitive advantage from the likes of digital and retail companies. By seizing this opportunity, we will be able to become more agile, competitive and maintain our prestigious financial heritage.
Putting data protection back on the financial agenda
By Wim Stoop, CDP Customer and Product Director, Cloudera
Despite the wave of changes that Brexit has brought financial organisations, from the end of ‘passporting’ to uncertainty over the longer-term equivalence rules, one thing has remained a constant — data privacy regulations are a core responsibility to protect sensitive data and mitigate data breaches. From PSD2 to GDPR, financial institutions need to ensure they are still processing and transferring data in accordance with the industry’s stringent rules and regulations. If not, they risk fines of up to £17.5 million or 4% of their company’s annual global turnover.
As the stakes get higher, the amount of data which financial enterprises are having to deal with is on the rise too. In fact, research by IDC estimated that businesses created and captured 6.4 zettabytes of new data last year alone. This increase in data production has linked to the pandemic and the move to remote working. Replacing face-to-face interactions with online communications has meant that financial businesses suddenly had to cope with a larger amount of data flowing through their networks. In addition, employees working from home are increasingly doing so on potentially unsecured devices, outside of the corporate network, risking exposure and data breaches according to numerous cybersecurity reports.
With an extensive stock of sensitive customer data and so many regulations to keep on top of, remaining compliant can feel overwhelming for financial organisations. However, this shouldn’t be the case. Today we often see businesses trying to retrofit data protection strategies, or take a reactive approach to external forces. Instead, they should be taking a proactive stance on data management. In doing so, security becomes a natural side-effect and financial companies can operate with the assurance that no matter what new regulations come into play, they are compliant. The question is, how to achieve this?
Taking a proactive approach to data privacy
To remain compliant, financial institutions need to get on top of their data. When data is sat in siloes, on legacy systems, it’s inaccessible to all and it becomes a challenge to identify what is sensitive and what isn’t. Poorly managed data can’t be protected and the risk of data breaches increases. By contrast, when properly controlled and stored, it becomes easy to apply data security rules.
From customer names and contact details to transaction records and PINs, financial organisations hold a lot of personal and financial data on customers. However, the trick is understanding that all data holds varying degrees of sensitivity and thus, needs to be managed accordingly. For instance, a customer’s bank account details are more sensitive, compared to their basic personal data, such as name and address, which are usually publicly accessible. By proactively identifying, prioritising and classifying data by its degree of sensitivity, financial companies can apply any and all data protection rules that are necessary, such as restricting certain users from accessing highly confidential information.
Yet, this identification process is often looked at as a reactive measure by many financial businesses. The challenge in proactive data management lies in an organisation’s ability to eliminate the frictions it has in tracking, identifying and classifying information, as opposed to doing so retrospectively. After all, data classification plays a vital role in ensuring data protection is upheld.
A proactive approach is integral to effective data management and governance. The first step in achieving this approach involves creating a data marketplace, or a curated, secured and governed data repository. Having something like a data marketplace in place means that as soon as data enters an organisation, enterprises can determine its degree of sensitivity, how it should be managed, and which analytics need to be run, to extract the most value out of the data.
Once these steps are taken, compliance and data privacy happen almost naturally and become ingrained in the business. When companies are aware of every single piece of data in their possession, they can know exactly how it’s being protected. Such a robust strategy ensures that institutions meet the high standards of trust that their customers have bestowed upon them in protecting their personal data. And, with this level of control, enterprises can avoid data lockout, reduce friction for employees, and optimise the value they unlock from their data. At the same time, they can have the peace of mind that they are compliant and protected.
A business-ready solution for data protection
With so many rules and regulations to keep track of, data protection shouldn’t be another worry to add to the list. Financial companies can maximise the efficacy of their existing security and governance strategies by applying it to all datasets across the enterprise – whether that be on-premise, in the cloud, or a combination of the two. In particular, as a scalable and low-cost solution, organisations are increasingly turning to the cloud for their data management needs. It’s expected that over half (51%) of business data will be stored in the cloud by 2024.
This is where an enterprise data cloud (EDC) really shows it’s worth, allowing financial companies to keep their data protected, compliant, and successfully governed. Simply put, an EDC is a hybrid and multi-cloud platform that harnesses analytics at every stage of the data lifecycle. It enables organisations to extract the true value of their data while still providing a consistent layer of security.
An EDC gives financial businesses a single source of truth, built on technology that operates on any cloud environment and right through to the edge. Armed with an EDC, companies have complete visibility over their data, no matter where it resides in the enterprise or the data lifecycle, easing the task of managing and protecting data. On top of this, an EDC supports a variety of data functions, including the data marketplace, and works to provide control, visibility and examination over data. With all these aspects working together, financial institutions can ensure that all data which passes through their infrastructure and into the data marketplace is efficiently governed and protected.
Bringing technology, people, and process together
Technological solutions, like an EDC, work at their maximum potential when they are in harmony with people and process. But, the triad has been thrown off balance by the rise of remote working and reduction in staff numbers. While all businesses recognise that sensitive data needs to be encrypted and access should be restricted, this has been a difficult feat as employees work from home and use devices outside of the traditional network security parameters. In fact, nearly half (48%) of employees are less likely to follow safe data practices when working from home. This will exponentially increase the risk of data breaches.
In addition, with almost a fifth (18%) of the UK workforce on furlough and team numbers shrinking, companies don’t have the same amount of manpower to validate both the systems being used, as well as the data being run in these systems, to ensure that they are compliant. Within the office environment, organisations were able to create ‘islands of perfect governance’, with all departments being aware of the applications used to manage data and therefore, guaranteeing higher levels of compliance. However, these safety nets have collapsed during home working and it’s become more difficult to ensure the security and privacy of data within an enterprise.
What’s needed here is an overarching framework that provides a standard for data governance. This is enabled by having the right technology solution, a proactive approach to data management and people within a business supporting it from the bottom up in place — forming a triad that works in perfect harmony. A framework such as this also enables enterprises to assess what they need to do to create data protection rules internally that ensure compliance, and allows employees to self-check their data security protocols eliminating any uncertainty about protecting sensitive data.
It is important to remember that the right technology alone won’t make people compliant – whether they are working in an office or remotely. Rather, as pointed out above, it is technology, people, and process, working in sync, that will ensure that regulations are adhered to and data is managed and protected.
Long-lasting success with data protection
With data volumes growing and remote working creating security vulnerabilities, financial businesses need to get on top of their data from the get-go. By proactively identifying sensitive data, accurately securing it, and delivering trusted data to end-users, the right data can be put into the hands of the right people.
Creating a watertight data privacy strategy requires financial organisations to deliver a uniform approach to data management and protection across departments to ensure compliance. In addition, harnessing technology, such as an EDC, will provide visibility and control over sensitive data, enabling financial institutions to unlock real-time insights from their data while still providing a consistent layer of security. With technology, people and process in harmony, enterprises can operate with the confidence that their data is being managed successfully and they are compliant with both existing and new regulations.
Optimising and Securing Device Management in a Corporate Environment
By Nadav Avni, Marketing Director at Radix Technologies
The proliferation of digital devices used in every organisation has only grown in the past few years. Digital devices provide greater flexibility and mobility for companies, but they also create more of a burden on IT teams and administrators to manage it all. Is there a device management solution powerful enough to support your corporate needs?
What Is Mobile Device Management (MDM)?
Mobile devices have more capabilities than ever before – and they’re accessing more sensitive and property data, too. In fact, 42% of enterprises now consider themselves mobile-first. As more employees moved to remote work, it underscored the need for greater security. At the same time, it made device management more difficult for IT teams.
Mobile Device Management (MDM) allows the remote management of every device in an organisation’s fleet from a centralised platform that’s accessible from anywhere. It gives complete control of devices and provides a way to manage settings, policies, and security in one place.
The Importance of MDM
Nearly three-quarters (74%) of CFOs said they expect to keep some employees working from home and shift others to remote work permanently. The need to manage devices remotely isn’t going away even when the pandemic is over. Even when employees are working on-site, they still use mobile devices.
Smartphones, laptops, tablets, and other single-use devices all need management. Workers may be in different locations than IT administrators. MDM allows efficient remote management of every device in the fleet regardless of the administrators’ and employees’ location.
Some of the core functions of mobile device management include:
- Managing setting and policies
- Monitoring app usage and performance
- Updating equipment, software, and applications
- Monitoring health of equipment
- Monitoring equipment location, status, and activity
- Remote device control for diagnosis and troubleshooting
- Encryption of email and files
- Segregation for work and personal device use, creating separate and secured environments for work data.
More than Security
Most MDM solutions focus mainly on Enterprise Mobility Management (EMM) and the security layer. A fully-featured MDM/EMM system adds another layer that provides comprehensive device management. This gives IT administrators the ability to manage nearly every type of device running on every major operating system from one platform.
Flexible solutions can be installed as an on-premises solution or on the cloud for reduced latency, redundancy, and end-to-end security with encryption. When you’re running a mobile device management platform in the cloud, the service provider automatically applies updates and patches. Hence, it’s one more thing you won’t need to worry about. It also makes it easier for administrators to access the platform remotely.
Mobile devices increase the possibility of data breaches or leaks. Besides the possibility of cyber-attacks, a staggering number of laptops and smartphones are lost or stolen. On average, 70 million devices are lost or stolen annually, with less than 10% of ever being recovered. This is an exceptionally big problem for managing compliance in regulated industries, such as healthcare, financial, and other businesses.
A robust MDM/EMM software provides end-to-end security and encryption to protect data. Devices can be tracked with geofence and anti-theft filters. If a device leaves an authorised area, it triggers a warning note to administrators, who can remotely lock the device or wipe the data. MDM/EMM apps with advanced security features also create snapshots on the fly even while devices are running to make restoring or recovery from virus attacks or system crashes easier.
Besides automated data audits, these functions help organisations comply with even the most stringent compliance regulations, including GDPR, the EU’s General Data Privacy Regulations. It also acts as an essential element in complying with HIPAA, SOX, FISMA, PCI DSS, and other regulations.
More Efficient Deployment
Devices can be deployed in batches with preset configuration, settings, and corporate policies. By automating enrollment tasks, the devices can be up and running in your environment without user intervention. It all happens in the background the first time a device is fired up and connected to a network.
Besides the platform’s native and priority enrollment modules, devices can also be deployed using a range of platforms. This provides an extremely friendly out of the box experience (OOBE) for employees without tying up IT teams for hours to configure new devices.
Tools for All Stakeholders
Modern MDM/EMM tools also provide sophisticated reporting tools to all stakeholders in the organisation. IT teams can manage the entire device fleet holistically or drill down to any individual device. Managers can look at adoption and usage rates. CFOs can look at the ROI. Each automated report can be customised to show what each group of stakeholders needs to make data-driven business decisions.
Tools for OEMs and Vendors
APIs are usually available for solution developers. That means the platform can be embedded in device firmware and integrated at the factory level for OEMs. System-level integration is also possible, so mobile device management software can be pre-installed and ready to go upon device delivery.
Managing Use and Content
Not every employee needs every functionality on every device. MDM software allows you to apply single-app or multi-app kiosk mode. This creates an encapsulated environment with access to the functionality and apps you determine.
It creates a consistent look-and-feel for devices and control device elements, such as locking down external ports or preventing unauthorised interaction of non-company installed apps. You can limit external internet use or enable/disable Wi-Fi or Bluetooth connections.
Device Management Solution
One of the biggest barriers to continued remote work is the lack of technology and infrastructure to allow remote employees to work productively. Therefore, implementing a modular and flexible MDM/EMM solution is key to successfully and efficiently managing your devices. Look for one that not only accomplishes the points listed above but one that also allows customisation for just about any use case. Take control of your entire mobile device fleet and gain the ability to finally manage nearly every aspect with ease.
2021: A year of digital enablement
By Peter O’Halloran, Vice President, Global Digital Commerce, Fiserv
In 2021, digital innovation will continue to accelerate, allowing businesses to shift to new ways of operating and adapt to changing consumer behaviour and expectations. We will continue to see an increase in digital commerce and alternative payment methods, and more intertwined physical and digital experiences. Here are my five predictions for the year ahead.
- Digital commerce will continue to rise
This year, businesses will be focused on ramping up existing avenues of growth and generating new ones, leaning into experiences and incorporating lessons learned during the pandemic. To stay ahead of the competition, drive sales, and continually engage with customers, we’ll see businesses send out special offers on a more regular basis, integrate loyalty and gift schemes, as well as offer additional value-added services, such as click-and-collect services that allow people to pick up online orders in store, free shipping and better options on returns.
- Physical and digital environments will blend
A growing consideration for businesses is how to optimise and connect digital and physical experiences. There has been an exponential rise in click-and-collect services, virtual queuing and appointment systems. According to 2019 research from Barclaycard, a third of retailers (34%) saw in-store sales increase after offering click-and-collect services. And by digitalising certain parts of the customer experience, businesses from restaurants to salons can operate more safely in their physical locations. Apps that allow customers to order and pay for food in advance, or book time slots for in-person services, are some examples of how businesses will continue to connect the physical and digital environments as they navigate the current landscape.
- Alternative payment methods will proliferate
Consumer payment habits have shifted significantly since the start of the pandemic. The recent Expectations & Experiences report from Fiserv found that a large number of consumers have increased their use of mobile payment apps and person-to-person (P2P) payments, and that they expect those changes to last. We will also likely see an increase in the adoption of proximity payments, such as mobile payments, NFC payments and QR codes.
In addition, the rise of digital payments could also accelerate the adoption of local or regional payment methods to better engage with customers. There are a number of methods that have emerged and already gained popularity, such as Klarna across Europe, Paytm in India and Brazil’s Boleto voucher system.
- Commerce-enabled Internet of Things (IoT) will grow
As consumers continue to expect new payment forms and digital experiences, businesses will continue to adopt more innovative capabilities. There is a growing usage trend for IoT in commerce, such as smartphone-based or voice-enabled capabilities. From grocery, fashion to other day-to-day activities such as paying for petrol, IoT devices can enable businesses to harness customer data to gain further insight into their behaviour and provide personalised offers and services. The new year will see commerce-enabled IoT increase, as well as further digital innovations to help grow revenue streams and enhance customer experience.
- Security will continue to be a priority
As more activity moves online, security is more vital than ever. 2020 saw a proliferation of COVID-19 related scams and fraud, such as phishing emails on relief funds or health information. These trends will likely continue, evolving to latch on to the concern of the moment, and we will see businesses, payment providers and financial institutions increasing their investment in the appropriate fraud solutions to protect both their organisation and customers.
Regulatory requirements will also continue to bolster security and fraud management. In Europe, regulations such as Strong Customer Authentication (SCA), which is part of the EU Revised Direction on Payment Services (PSD2), help ensure that payments are secured with multi-factor authentication, providing additional security and assurance for consumers.
A digitally-enabled future
Many businesses have successfully adapted to a new way of operating. As we go into the new year and continue to navigate the challenges posed by the pandemic, businesses will be able to rely on those learnings to adjust quickly to changes that come their way.
Gastric Electric Stimulators Market Size Worth US$ 188.4 Mn by 2026 – Future Market Insights
The worldwide uptake of gastric electric stimulators is anticipated to witness hefty demand in 2019, representing a rigorous 6.6% y-o-y...
High Preference for Combination Tattoo Removal Lasers, Patients Seek Economic Price & Limited Sessions
According to the latest research by Future Market Insights (FMI), the tattoo removal lasers market closed in on US$ 179 million in...
Global Demand for Weight Loss & Obesity Management Receiving Strong Impetus from Spectacular Expansion of Medical Tourism Sector across Asia
The growth of weight loss and obesity management market is attributed to the rising epidemic of obesity across the globe....
FMI’s Study on Benign Prostatic Hyperplasia Prostate Treatment Market: Least Invasive Alternatives in Trend
The approximately US$ 25 Bn market for benign prostatic hyperplasia prostate treatment is likely to expand at 4.6% CAGR during...
Global Motorcycle Start Stop Systems Market 2021 Growth, COVID Impact, Trends Analysis Report 2027
Future Market Insights has adopted multi-disciplinary approach to shed light on the evolution of the Motorcycle Start Stop Systems Market during the...
Urology Imaging Systems Market to Record an Exponential CAGR of 3.8% by 2028- Future Market Insights
According to the latest research by the FMI, the global urology imaging systems market is expected to account for over US$ 486.4...
Marine Ventilation Systems Market Share, Global Industry Size, Growth, SWOT Analysis, Top Companies, Competitor Landscape, Regional Outlook 2027
Future Market Insights has adopted multi-disciplinary approach to shed light on the evolution of the Marine Ventilation Systems Market during the historical...
Hematology Diagnostics Market Players Eye Strategic Partnerships to Vie with More Diverse Portfolios, finds FMI Study
The hematology diagnostics market has witnessed the advent of a wide range of hematology testing solutions that combine the attributes...
Global Marine Fasteners Market: Things to Focus on to Ensure Long-term Success| Key Players include Attwood Marine Products, SEASTAR SOLUTIONS, Marine Fasteners, Inc., Fasco Fasteners
Future Market Insights has adopted multi-disciplinary approach to shed light on the evolution of the Marine Fasteners Market during the historical period....
The US$ 85 million Market for Loop-mediated Isothermal Amplification (LAMP) to Shape the Future of Molecular Diagnostics – Future Market Insights
Global demand for loop-mediated isothermal amplification technology reached around US$ 85 million in 2018, as indicated by a new research...