The Covid-19 pandemic has pushed a lot of people into the digital world. Thanks to the threat of the virus a lot of people have had to adapt to using various digital tools to lead their lives—from working, shopping, studying, to getting entertained, paying bills, and carrying out banking transactions.

With the surge in people using online banking, banks have also had to scale up. According to experts, Covid-19 has acted as a catalyst for digital banking services. “Traditionally banks focus on three things: generating more revenues from the customer, minimising the cost of servicing the customer, and being abreast with the compliance and regulatory requirements of the land. With these focus areas in mind, the investments in the digital transformation initiatives fall into two buckets—enabling hygiene and specialised features,” explains Ranga Reddy, CEO of Maveric Systems, a 20-year-old global technology service provider in the banking and fintech space.

“With the whole Covid-19 outbreak, these investments are now in an accelerated mode. The timelines have shrunk 3X which means, the transformation programmes which were supposed to be completed in a year’s time are now being pushed to go live in a quarter,” adds Reddy, whose company counts among its clients “12 of the world’s top banks, six of the world’s top 50 biggest banks, and four of the top challenger banks”. He declines to name his clients.

Naturally, this heightened activity has attracted the attention of criminals. According to a VMWare report from last year, between February and April 2020, attacks targeting the financial sector have grown by 238% globally. No wonder that the Unisys Security Index 2020, released last year, found that one of the top concerns of respondents in India was bank card fraud—unauthorised access to credit and debit card details, and concerns around online banking and shopping.

“In general, financial services sector is prone to cyberattacks owing to the wealth of personal and financial data they possess. Also, emerging economies with an evolving regulatory and legal infrastructure become more prone to such attacks. Cyber criminals are not always caught and typically, the victims rarely get compensated and often have to bear the consequences and financial losses associated with a data breach themselves. This could be the reason why concerns around bank card frauds are high,” Sumed Marwaha, regional services vice president and managing director for Unisys India, had told Fortune India then.

According to Reddy, most banking frauds in India are primarily composed of credit card frauds, especially incidents of card cloning, which have seen a significant rise over the years. While India was one of the first countries to adopt the instant payments system, or the QR code-based system, a very secure one for banks and customers, Reddy says that on the cards front “lack of adequate end-point security at the device level is exposing the customers to the fraudulent transactions”. Impersonation frauds have also increased over the years, where data thieves obtain KYC credentials through online phishing via social media or e-mail, he adds. “The lack of a multi-layered approach to identify frauds has been one of the reasons that financial institutions are not being able to prevent such frauds,” he says. “India is a soft target when it comes to cyber fraud such as phishing, ATM PIN-based, or OTP-based frauds.”

How then does one guard against such frauds, especially since those new to the banking sphere might not be aware of security protocols. According to Reddy, educating customers would be key to avoiding bank frauds. “I already see that many leading private and public sector banks are making their services available in the Indian languages. However, concerted efforts need to be taken in the direction of financial literacy in the Indian languages.” He suggests that the regional rural banks be entrusted with the task of educating the rural population of India. “Since they are localised, they have local network strength and they also govern local institutions.”

Mobile phone manufacturers too could play a key role in avoiding fraudulent transactions, suggests Reddy. “If the government of India mandates to implement certain security standards on the mobile devices as a bundled feature, it will serve as a great control mechanism for fraud prevention.”

However, not all frauds take place at the customer’s end. “While frauds at the customer’s end are more perceivable, there has been a rise in cybercrimes in business email compromise against financial institution executives. The banking ecosystem is highly integrated, and banks have to rely on alliance partners (such as fintech solutions) and third-party vendors in banking operations, making them vulnerable to their security infrastructure,” says Munjal Kamdar, partner, Deloitte India.

Banks in India have been adopting digital technology at a very rapid pace. I believe the banks and the cybersecurity teams as part of the government machinery are doing a great job. I can confidently say that our systems are one of the most secure banking systems in the world.
Ranga Reddy, CEO, Maveric Systems

According to a recent McAfee report, entities that use cloud-based email services, especially in the finance and business sectors, are lucrative targets for cyber-criminals who conduct business email compromise (BEC) scams. The report says that according to the FBI’s Internet Crime Complaint Center (IC3), there has been a steady increase in BEC scams since 2014, with the IC3 receiving complaints totalling actual losses of more than $2.1 billion from BEC scams between 2014 and 2019. This means that BEC scams are growing in volume and users are struggling to maintain the security of their account, the report explains. “As more employees turn to remote working on personal and company devices during Covid-19, as well as conducting virtual financial transactions, this could create a more fertile environment for BEC phishing scams targeting the financial sector,” the report says.

How do organisations prepare for such risks? According to Seshadri P.S., senior director, governance, risk and compliance, Office of the CISO, Unisys India, it is imperative for organisations to invest in information security and to use the advantage of tech solutions like biometrics, credential management, restricted access and so on. “While some companies in the BFSI sector have invested in biometrics at some level, they can further invest in data analytics and artificial intelligence to strengthen their security infrastructure, he adds. He suggests that banks can incorporate more advanced offerings such as “telephone voice authentication, real-time facial recognition for ATM authentication and digital onboarding,” he says.

For employees working from home, Seshadri recommends the companies educate them about potential security concerns and “empower them with the right tools and skills to defend themselves and the organisational data from malicious attacks”. Organisations should adopt “new paradigms like Zero Trust that are scalable and include always-on encrypted direct access, identity verification tools, and a software-defined perimeter to limit the damage from malware getting in,” he adds. And use biometrics for additional security. “Additional security controls such as multi-factor authentication, or even biometric logins such as facial recognition or fingerprint scans can further secure IT assets that are used to access company networks,” he says.

While attacks targeting the financial sector have gone up, the McAfee report says that “there have been fewer dramatic successes is a tribute to the intense effort the sector has put into cybersecurity both at individual institutions and collectively”. In fact, the report adds, that a survey conducted in 2018 by the Financial Services Information Sharing and Analysis Center (FS-ISAC), a global cyber intelligence sharing community solely focussed on financial services, found that financial institutions spend (depending on their size) between 6% and 14% of IT budgets for defence.

Agrees Reddy. “Banks in India have been adopting digital technology at a very rapid pace. I believe the banks and the cybersecurity teams as part of the government machinery are doing a great job. I can confidently say that our systems are one of the most secure banking systems in the world,” he says.

Ultimately, it comes down to awareness. “Banks should make it a point to communicate the steps taken by them to provide a secure digital platform to their customers, and allay their concerns. Last, but not the least, banks should also educate their customers about the various types of cyberattacks that could be targeted at them and how to stay safe in the face of these attacks,” Seshadri signs off.

This was originally published on Fortune India

Banking has been one of the industries extremely cautious in adopting cloud native technologies. Highly regulated norms, practices and data privacy laws have precluded them from cloud led investments. Stringent as the banking laws are, the stakes are simply unique and too high.

COVID-19 has beset the economy with unprecedented challenges. In these unrivalled times, banks have been supporting their customers purposefully with new modes of digital technology evolution. Many of these innovations are powered with cloud native technologies. Social distancing clauses are perhaps the biggest reason for the industry to look beyond their traditional ways of business operations.

The Game of Cloud

No one needs introduction to cloud native platforms and technologies, and the value they bring to every business enterprise. Last year, Gartner forecasted worldwide public cloud service revenue to reach 354.6 billion by 2022. Amongst the various cloud players, Gartner has predicted Software-as-a-Service (SaaS) segment to lead the game of cloud with the highest share.

Many banking businesses are beginning to draw confidence from Fintech service providers to adopt the cloud roadmap. Functions such as Human Resources, Marketing, Sales etc., are already leveraging cloud-based technology platforms for their daily operations. The needle, now, is slowly but surely moving towards the core banking services such as retail banking, wealth management, payments, treasury and more.

A Pragmatic Case of World’s No 1 banking software company

As digital appetite grows for banks in the current pandemic, many are turning on to SaaS based banking solutions. We can take the practical case of Temenos, which is world’s no 1 banking software. To help banks tide over the current crisis, Temenos has restructured their service strategy to focus more on AI-based SaaS technology propositions. The last quarterly performance saw them recording significant growth in SaaS based banking solutions. In fact, the revenue from SaaS based license selling increased by 104% in actual contract value (ACV).

Temenos Infinity, a digital front-end solution and Temenos Transact (erstwhile known as T24), which is a renowned worldwide core banking solution, are among the various SaaS based product lines launched by Temenos. Both of them guarantee remarkable digital capabilities with cutting-edge features, pre-configured functionalities and also, keeps a close eye on compliance support.

Next Commercial Bank (Next Bank) is one of the early adopter neo-banks in Taiwan, which has selected the cloud native Temeno Transact platform to rapid launch their banking operations. Another Swiss based tier-1 private bank Banco Itaú, is implementing Temenos Wealth to revamp their wealth management operations. Yemen based Al Kuraimi Islamic Bank (KIB) has also selected Temenos Infinity and Transact to replace their legacy IT systems. KIB features among the top 5 leading banks in Yemen. These recent examples reflect the adaptability of cloud-based banking platforms for banks of any size and types.

Future of banking with Temenos Infinity and Transact

The agility offered by cloud based banking solutions, is ‘what-the-doctor-ordered’ for the current pandemic. Cloud native applications promise a great deal of customer experience through simplified processes, lower CAPEX, highly intuitive user interface (UX), advance data analytics and are capable to operate across significant scale(s). They can be deployed anytime anywhere, and put to use much quicker than the traditional on-premium based solutions.

• Temenos Infinity is a comprehensive digital banking solution, designed for onboarding, servicing and retaining customers of tomorrow through seamless and highly intuitive user journeys. It offers next-generation capabilities with power-packed analytics for driving result-driven actions and decision making. Additionally, bankers can expand their business portfolio by taking advantage of open banking privileges through OpenAPI’s
• Temenos Transact, formerly known as T24, is the next generation core banking solution. Trusted by more than 3000+ banks, they have been among the favorites for the last 25 years. Transact now comes packaged and wrapped with robust cloud-native, cloud-agonistic, micro-services based technology.

Maveric systems, being a certified Temenos services partner, has made significant strides and considerable investments in getting its Temenos specialists trained in SaaS based Temenos Infinity and Transact solutions. Our brand promise of ‘Connected Core’ enable banks to accelerate their next transformation journey, by building a digital ecosystem designed with reliable solutions and endowed through encyclopedic Temenos proficiency.

Much more secured than we think….

Arguably, and in all fairness, security dialogues are exchanged and discussed deeply when it comes to cloud migrations. Most of the SaaS based banking propositions are designed carefully keeping in mind all current and future led security scenarios. Banks can deploy proper gated controls such as digital fraud detection systems, build encryption walls and provide a safer transaction passage through Transport Layer Security (TLS). More so, bankers gain further confidence through the additional security layer of AI based algorithms packed in SaaS propositions.

The Road Ahead

Most Banking CIO’s are on the edge of cloud technology disruption that has erupted in the current crisis. They would soon need to wear the ‘cloud-hat’ to bring banking innovation at speed. There are enough proof points reflecting positive vibes for banking CIO’s to invest in cloud native core banking. The future of core banking will certainly see more cloud deals, thereby setting the next course for digital banking ecosystem.

This was originally published on MEAFINANCE website and is being reproduced here.

Reference Links:

• Press release: Gartner forecasts worldwide public cloud revenue
• Temenos
• News: temenos q1 2020 new license performance significantly impacted by covid 19
• Press article : Taiwanese neo bank chooses Temenos
• https://globalfintechseries.com/global-tier-one-bank-itau-private-bank-international-from-itau-unibanco-group-selects-temenos-saas-to-power-its-international-banking-operations-on-a-single-wealth-management-platform/
• Press article : Yemen’s KIB selects temenos Infinity and Transact to replace legacy IT