How FIs Can Take the Speedboat or Extensibility Approach to Digital, Accelerated Financial Services

In a post-pandemic world, legacy financial institution must accelerate their digital processes quickly, or risk ceasing to be relevant.

With financial technology companies like Chime, Varo Money, Social Finance (or SoFi) and Current on the rise, change is inevitable. Alongside the nimble fintech competition, banks face pressure to rapidly deliver new products, as was the case with the Small Business Administration’s Paycheck Protection Program loans. While most legacy institutions try to respond to these business opportunities with manual processes, companies like Lendio and Customers Bank can simply automate much of the application process over digital channels.

Legacy institutions lack the access to the latest technology that digital challengers and fintechs enjoy due to technology ecosystem constraints. And without the same competitive edge, they are seeing declining profit margins. According to Gartner, 80% of legacy financial services firms that fail to adapt and digitize their systems will become irrelevant, and will either go out of business or be forced to sell by 2030. The question isn’t if financial institutions should evolve — it’s how.

To fuel long-term growth, traditional banks should focus on increasing their geographic footprint by removing friction and automating the customer’s digital experience to meet their needs. Millions of Generation Z adults are entering the workforce. This generation is 100% digitally native, born into a world of vast and innovative technology, and has never known life without Facebook, Snapchat, TikTok or Robinhood. In a couple of years, most consumers will prefer minimal human interaction, and expect fast and frictionless user experience in managing their money, all from their smartphone.

Some solutions that traditional banks s have undertaken to enhance their digital experience include:

  • Extending on top of their existing tech stack. In this scenario, financial institutions acquire digital/fintech startups to jump-start a move into digital banking. However, there are far fewer options to buy than there are banks, and few of the best fintechs are for sale.
  • Totally transforming to modern technology. This option replaces the legacy system with new digital platforms. It can come with significant risks and costs, but also help accelerate new product launches for banks that are willing to pay a higher initial investment. Transformations can last years, and often disrupt the operations of the current business.
  • Using the extensibility approach. Another way forward is to use the extensibility approach as a sub-ledger, extending the legacy system to go to market quickly. This approach is a progressive way to deliver fit-for-purpose business capabilities by leveraging, accelerating and extending your current ecosystem.

Institutions that want to enter a market quickly can also opt for the speedboat approach. This includes developing a separate digital bank that operates independently from the parent organization. Speedboats are fintechs with their own identity, use the latest technology and provide a personalized customer experience. They can be quickly launched and move into new markets and unrestricted geography effortlessly. For example, the Dutch banking giant ABN AMRO wanted to create a  fully digital lending platform for small to medium enterprises; in four months, the bank launched New10, a digital lending spinoff.

A speedboat is an investment in innovation — meant to be unimpeded by traditional organizational processes to address a specific need. Since there is a lot of extensibility, the technology can be any area the bank wants to prioritize: APIs, automation, cloud and mobile-first thinking. Banks can generate value by leveraging new technology to streamline operations, automate processes and reduce costs using this approach.

Benefits include:

  • Being unencumbered by legacy processes because the new bank is cloud native.
  • The ability to design the ideal bank through partners it selects, without vendor lock-in.
  • Easier adaption to market and consumer changes through the bank’s nimble and agile infrastructure.
  • Lower costs through automation, artificial intelligence and big data.
  • Leveraging a plug-and-play, API-first open banking approach to deliver business goals.

By launching their own spin-off, legacy banks can go to market and develop a competitive edge at the same speed as fintechs. Modern cloud technology allows banks to deliver innovative customer experiences and products while devoting fewer resources to system maintenance and operational inefficiencies.

If a financial institution cannot make the leap to replace the core through a lengthy transformational journey and wants to reach new clients and markets with next-generation technology, launching a speedboat born in the cloud or opting for the extensibility approach opens up numerous opportunities.

Three Reasons to Take Banking to the Cloud

Bankers challenged by legacy technology can leverage a low-cost workaround as a way to keep up with the latest innovation.

Today’s marketplace is challenging bankers to keep pace with the rate of technology innovation and provide a level of functionality and service that meets — or hopefully, exceeds — their customers’ expectations. Many find, however, that they must first overcome the limitations of existing legacy technology in order to deliver the customer experience that will keep them competitive.

A revolution of sorts has been developing within the computing world: a shift to internet-based, cloud services has introduced a more cost-effective, scalable and reliable approach to computing. With essentially no or little cost to join and access to on-demand platforms and application programming interfaces (APIs), users are empowered to leverage virtually unlimited resources while paying on a metered basis. An additional benefit of the cloud is its ability to support transformation over time, providing options to configure services based on users’ specific needs as they evolve — which has a direct application for bankers.

Many banks have already learned that a move to the cloud not only helps them increase efficiencies and reduce operational costs, but can drive innovation where it matters most: the customer experience. The inherent advantages of the cloud are being applied within retail banking to provide a modern banking experience for customers through services that are offered in a scalable, “pay-as-you-go” format that grows and evolves over time.

Most importantly, the cloud helps bankers build off of their existing technology infrastructure to more easily create new services and experiences for their customers, particularly in three ways:

Faster innovation. The cloud breaks down the barriers to innovate across departments, eliminating a disintermediated, “spaghetti” architecture and allowing banks to go to market faster. Projects that may have taken months or years to implement before can now often be completed through a click and initiated within days. Much like an appstore, the cloud allows banks to subscribe, try and launch new products almost instantly, as well as delete applications that no longer serve their account holders.

More cost savings. Compared to the expense of enterprise and on-premises solutions, the cloud minimizes the need for costly investments, like physical infrastructure or storage and maintenance fees. Instead, banks pay only for the specific applications they use. Services that were once available only through binding, long-term contracts are now accessible entirely within the cloud on a metered basis, removing the significant upfront costs associated with legacy technology.

Improved flexibility. The number of resources and tools available within the cloud environment is growing daily, which drives growth in the developer community as a whole. This leads to more participants who are creating and contributing even better offerings. Banks benefit through the ability to implement new products or services quickly and easily in response to market demand or the specific banking needs of account holders. If the bank finds a certain application does not provide enough value, the cloud offers the flexibility to try other services until it identifies the product with the best fit for its unique situation.

For too long, too many banks have simply settled for “good enough” from an innovation perspective, hamstrung by their legacy technology’s complex infrastructure. In most cases, banks’ core technology investments have been sound ones — the technology is stable, secure and reliable and has a proven track record. But it can create limitations when it comes to flexibility, ease and speed to deploy new capabilities. With cloud computing, bankers can effectively extend the value of their core technology investments by leveraging all of the benefits that they provide, while cost-effectively supporting a more innovative approach to providing customers with a true, modern banking experience.

Protecting Customers Through a Cybersecurity Control Tower


cybersecurity.png

Citizens National Bank of Texas, the third-oldest independent financial institution in the state, has remained deeply committed to its local community since its founding in 1868. The bank’s hometown, personalized approach to serving customers in the Dallas-Fort Worth area has played an integral role in its success. It was this focus on the surrounding community that led CNB to provide its customers with an extra layer of security by working with DefenseStorm, a Seattle-based provider of cloud based cybersecurity solutions.

As a full-service community bank with $859 million in assets, CNB aims to offer its customers the same service they would receive at any major, nationwide financial institution. This includes technology-driven services like online banking, mobile banking and bill pay. To offer these digital banking capabilities without exposing its network to new security vulnerabilities, CNB invested in security infrastructure and additional safeguards to protect customers and their financial information from potential cyber attacks. Although it had a solid system of security measures in place, the bank needed help monitoring its overall network activity and sought to increase the visibility of security threats.

This is where DefenseStorm comes in.

Heightened Visibility with a Cybersecurity Control Tower
DefenseStorm acts as security control tower for CNB to detect intrusions, investigate threats, take action to stop attacks and report on cybersecurity to regulators and the bank’s board of directors. Additionally, DefenseStorm’s team of security experts provides the bank with 24/7 monitoring support, triaging alerts and working alongside the bank to ensure the strongest security possible.

By constantly monitoring network activity and working with the bank to improve its security posture and quickly resolve incidents, DefenseStorm has helped CNB discover and neutralize at least 10 cyber threats in the past year.

Previously, the bank’s internal team would have to review and analyze all security event data. Now, the bank receives alerts in real time, which allows for a more efficient response and remediation process. Additionally, the bank uses DefenseStorm’s support ticketing feature to provide a clear, documented way to track events and how they are being handled.

Wade Jones, CNB’s senior vice president and chief information officer, values the extra support DefenseStorm provides. “It’s nice, the guardianship—having a security team sitting behind me watching the front line and letting me know if there’s something we need to work on,” says Jones.

Genuine Threat or False Alert?
CNB also leverages DefenseStorm’s search and reporting features, which enable the bank to transform complex and unstructured security event data from separate systems into meaningful, actionable insight. Oftentimes, systems will produce a constant stream of security alerts, many of which are not genuine threats, but which analysts must still review. With only eight hours in the workday, it can be difficult to assess each alert—and that can desensitize employees toward alerts, potentially resulting in a genuine threat being ignored. CNB has overcome this challenge and enacted a more proactive security response by sharpening its ability to interpret large sets of event data, so the bank is only notified if a threat is genuine. Now, the bank can quickly determine the scope of a threat and escalate the event into the remediation process with a click of a button.

The ability to provide a unified, comprehensive view of the bank’s network and systems is vital. “In our journey with DefenseStorm, we’ve brought everything together, log-wise, for all systems in the bank so we can take a more holistic approach,” says Mark Singleton, chief executive officer at CNB.

Enhancing Security without Expanding Staff
Furthermore, DefenseStorm brings a level of cybersecurity expertise that would be difficult for CNB to recruit in its own market. Given the shortage of cybersecurity talent across industries, hiring qualified candidates is challenging, especially for a small community bank, as professionals with advanced security credentials are typically hired by larger corporations. To make it worse, cyber criminals realize this, often assuming that a smaller bank has less sophisticated technology and fewer defenses. However, with DefenseStorm, CNB is able to provide an enhanced level of security, comparable to larger financial institutions, without hiring an extra security expert.

For community banks, business is personal. CNB realizes this and has invested in the infrastructure needed to safeguard its customers’ financial assets.

“Unlike big banks that never see their customers outside of work, we run into ours all the time—at church or at the grocery store,” says Singleton. “If we mess up, it’s our communities, our friends and our grandmothers who are ultimately affected. It’s our job to protect them and DefenseStorm helps us do that.”

Banking on the Cloud: Why Banks Should Embrace Cloud Technology


cloud-technology.png

Cloud adoption has reached critical mass, with roughly 90 percent of businesses employing its technology in some facet of their organization. The cloud presents opportunities for enhanced efficiencies and flexibility—without any security trade-offs—so it’s no surprise that we’re seeing more organizations shift to the software as a service (SaaS) model. But while we’ve seen the healthcare, legal and insurance industries evolve, banks have been more reluctant to adopt new technologies built outside of their own walls.

Why Banks Lag at Cloud Adoption
The banking industry is not known for being nimble. As one of the oldest, largest and most vital industries in the U.S. economy, banking has, in some ways, fallen victim to inertia—relying on traditional technologies and internal networks to disseminate its services. This is in large part due to the widely-held belief that on-premise solutions are inherently more secure than the cloud because data lives in proprietary servers and systems, rather than a service provider’s environment. However, research shows that cyber attacks affect both environments, with on-premise users experiencing over twice as many web application attacks as service provider customers, on average.

Still, for many banks, the perceived risks of the cloud outweigh its forecasted benefits. In fact, 73 percent identified security concerns as the main reason for avoiding it, while 63 percent listed privacy issues as their top worry. That perception is beginning to change, as the cloud’s business advantages have become too significant to ignore. A recent study found big banks are expected to grow from as little as zero percent public cloud adoption to 30 percent by 2019—a dizzying adoption rate for an industry that still relies on legacy systems from the 1960s.

For those still wary of making the switch, here are three of the biggest benefits of moving to the cloud:

Security
Cloud technologies boost your security in ways that on-premise systems are unable to. Traditionally, to use a new offering, you install an on-premise server in your datacenter. Then you must configure network, firewall and secure access to the server. This stretches resources by increasing training requirements, which ultimately detracts from the goal of the offering. Due to economies of scale, cloud companies can own the server, the networks and the processes making the entire offering more complete and secure.

With strict protocols and security certifications like SOC2 and ISO27001 built into many services, banks can ensure that the cloud is accessed and enabled securely for any solution provider they work with.

Understanding the value of security and the benefits that cloud technology brings to banks, a handful of institutions are leading the shift and others are expected to follow. Capital One Financial Corp., an early adopter of Amazon Web Services (AWS), has steadily built its infrastructure in the cloud over the past two years. The company continues to work closely with AWS on specific security and data protocols, allowing the company to operate more securely in the public cloud than it could have in its own data centers, according to Capital One CIO Rob Alexander.

Efficiency and Scalability
The cloud enables teams to be more agile than ever. The SaaS model gives teams the ability to be flexible and enable new interations on-demand. This access to real-time commentary empowers teams to ship updates more quickly and frequently and to push the envelope so they’re constantly improving products to align with what customers are looking for.

By leveraging the cloud to store complex data, organizations can meet ever-evolving regulatory compliance and governance rules mandating data protection. A recent example would be financial institutions working to comply with the EU’s General Data Protection Regulation. The ability to meet regulations can be sped up by a number of the cloud’s features, including built-in auditability for more clarity around your compliance status, and virtual infrastructure that reduces room for error.

On top of addressing infrastructure models, the cloud allows businesses to be elastic. For instance, being able to address the mass amount of credit card purchases on Cyber Monday and expand for that specific demand, rather than having to buy new servers to address the one day-per-year demand.

Overhead Cost Savings
Switching from on-premise to cloud can mean significant savings on overhead costs.

When you work with a SaaS provider, you no longer need to invest in proprietary infrastructure. Instead, you’re able to access and maintain your data through your partner’s established environment. This cuts down on both the up-front capital costs associated with hardware and the continuous costs that eat up budget to keep hardware and software optimized and refreshed.

Rather than pay a flat fee to keep systems up and running, cloud providers offer a variety of metered, pay-per-use options. These include Salesforce and Microsoft Office 365’s pay-per-seat, AWS’ infrastructure as a service (IAAS) pay-per-hour model, and Oracle’s high integration fees.

By outsourcing services to the data center, you can also realize savings on staffing. On-premise technologies can require a team varying in size from one to dozens, depending on the bank’s size. Because your cloud provider takes on the computing, your internal team no longer has to worry about hardware refreshes or server and software updates, freeing up their time to focus on what matters most: your business. Cost savings can also be reinvested into the business to increase headcount, boost wages and drive product innovation.

Cloud technology has already been embraced by businesses in numerous industries, but banks have been slower to acknowledge its benefits. Now, as cloud’s positive impact on security, efficiency and cost come to the forefront, it’s becoming harder for banks to ignore the advantages. Already, we’re seeing early adopters reap the benefits, from a financial standpoint and innovation perspective, and in the coming years, we can expect to see banking in the cloud transition from a “nice-to-have” to a business-critical approach to moving up in the market.