Recently released data has shown that increased use of cloud and IT outsourcing could be on the cards for banks and insurance companies. But how exactly will they adopt it, considering that until now it has been largely regarded with scepticism by the sector? Procurement expert, Daniel Ball of Wax Digital, outlines what financial institutions are doing to source, manage and maintain a cloud infrastructure suitable for their unique market conditions.

While other industry sectors have forged ahead with its adoption, cloud computing been approached with considerable caution across the banking and financial services sectors, and in many ways rightly so. In a highly regulated environment where data security is paramount, putting critical business processes and data in the hands of a third party without close scrutiny could easily spell trouble. Let’s face it, no bank wants to be the one that chooses cloud and ends up embroiled in the scandal of a major data breach.

Banks face a rather unique position. On one hand they must be doubly secure; the ramifications of the banking crisis and recession still echo through the corridors of every institution. On the other hand they know they need to change to compete in the future, with greater customer centricity and improved operating models key watchwords. According to PWC’s Banking 2020 research, 61% of bankers consider a customer centric business model to be very important, but less than 20% of them are very prepared for it. They’re crying out to change as businesses but must do so with the utmost caution.

While the wrong approach to cloud can definitely expose banks to risk, outsourcing IT and moving the right things to the right form of cloud can be positive steps in enacting changes, such as reducing fixed overheads, downsizing internally and shifting focus from complex processes to where time should be really spent – on understanding what the customer wants and delivering it. Cloud can also go beyond tidying up the back office. It can also drive innovation by allowing a bank to take advantage of new technology and expertly executed business processes.

And this seems to be where the industry’s view now lies. Indeed, in recent research by Finextra 49% of banks said that they will increase IT outsourcing in 2015 compared to just 9% planning to decrease it – suggesting an upward trend in the number of banks entrusting their IT to third parties. Similarly, in a new research study by the Cloud Security Alliance (CSA) over 60% of banks, credit unions and insurance companies surveyed across 20 countries said that they are currently working on their cloud strategy – suggesting that a majority of banks have decided that cloud has a place in their business, but they are still deciding on the right type of cloud for them.

Our own experience as a cloud eProcurement software provider echoes this. In the last six months we have seen more incoming enquiries from banks and financial services companies than any other sector and have now helped six high street institutions move their supplier sourcing and procurement processes into to the cloud. And working with them has proven that an additionally rigorous approach is required to validate and implement such strategies in a compliant manner compared to other markets.

How well do you really know your competitors?

Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.

View profiles in store

Company Profile – free sample

Thank you!

Your download email will arrive shortly

Not ready to buy yet? Download a free sample

We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form

By GlobalData

Submit

UK USA Afghanistan Åland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bonaire, Sint Eustatius and Saba Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos Islands Colombia Comoros Congo Democratic Republic of the Congo Cook Islands Costa Rica Côte d"Ivoire Croatia Cuba Curaçao Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See Honduras Hong Kong Hungary Iceland India Indonesia Iran Iraq Ireland Isle of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati North Korea South Korea Kuwait Kyrgyzstan Lao Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia, The Former Yugoslav Republic of Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Réunion Romania Russian Federation Rwanda Saint Helena, Ascension and Tristan da Cunha Saint Kitts and Nevis Saint Lucia Saint Pierre and Miquelon Saint Vincent and The Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and The South Sandwich Islands Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania Thailand Timor-Leste Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates US Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Vietnam British Virgin Islands US Virgin Islands Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe Kosovo

Industry * Academia & Education Aerospace, Defense & Security Agriculture Asset Management Automotive Banking & Payments Chemicals Construction Consumer Foodservice Government, trade bodies and NGOs Health & Fitness Hospitals & Healthcare HR, Staffing & Recruitment Insurance Investment Banking Legal Services Management Consulting Marketing & Advertising Media & Publishing Medical Devices Mining Oil & Gas Packaging Pharmaceuticals Power & Utilities Private Equity Real Estate Retail Sport Technology Telecom Transportation & Logistics Travel, Tourism & Hospitality Venture Capital

Tick here to opt out of curated industry news, reports, and event updates from Electronic Payments International.

Submit and download

Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

But in what form has cloud become acceptable? In the CSA’s research cited earlier, 47% said that they are considering a sophisticated mix of in-house, private, public and hybrid environments. This suggests that while cloud and outsourcing are becoming integral parts of their strategy, pure Software as a Service and public cloud models are considered to be too straight-jacketed and limiting for the specific needs of the banking sector – especially where confidential data is concerned.

Five of the six institutions we work with have made major investments in cloud based Purchase to Pay or Source to Pay technology, designed to offer an experience similar to online shopping (or indeed banking) to hundreds of employees that need to raise requests for goods and services, from marketing material to temporary staff and all things in between. In these cases a cloud approach is helping them to innovate in procurement, providing a more intuitive user experience to help drive adoption and compliance within the bank, enabling better supply-chain collaboration and risk management and facilitating effective, proactive contract management.

What has been really important in facilitating that move to an intuitive cloud system is demonstrable security and process compliance, at the level required to host and manage bank data in the cloud. Security protocols that go far beyond the norm are essential, as are accreditations such as ISO9001, Cyber Security Plus, and ISO27001 to demonstrate a commitment to process rigour.

In essence the picture that appears to be emerging is that banks’ preferred approach to cloud is the delivery of software services but via private cloud rather than shared or public cloud infrastructures or those offered as standard by software and technology providers, even though generally secure. A private cloud can either mean an internally operated cloud (data centre or server stack) protected by the corporate firewall, or a dedicated segment of a 3rd party data centre with added security and no server sharing.

Financial institutions have a stronger duty of care than other organisations to scrutinise the risks of handing processes and data over to others. They must also ensure a double lining of water-tightness in the cloud and IT contracts that they put in place. It’s essential that banks look to work with providers that can flex their cloud delivery model to provide tailored levels of security and private cloud infrastructure to meet the demands of regulators and their own security policies. Then they can take advantage of all the cloud has to offer, safe in the knowledge that it is right for them, their own bank balance, their customers and their risk profile.