RC & FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES. risk compliance RISK & COMPLIANCE MAGAZINE. risk & compliance REPRINTED FROM:

Transcription

1 R E P R I N T RC & risk compliance & FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES REPRINTED FROM: RISK & COMPLIANCE MAGAZINE JUL-SEP 2015 ISSUE RC & risk & compliance Visit the website to request a free copy of the full e-magazine Published by Financier Worldwide Ltd riskandcompliance@financierworldwide.com 2015 Financier Worldwide Ltd. All rights reserved.

2 MINI-ROUNDTABLE M I N I-R O U N D TA B L E FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES 2 RISK & COMPLIANCE Jul-Sep 2015

3 FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES MINI-ROUNDTABLE PANEL EXPERTS Stu Bradley Senior Business Director SAS Security Intelligence Practice T: +1 (773) E: Stu Bradley has established SAS as a market leader within fraud and improper payments, regulatory compliance and security solutions. He drives SAS end-toend strategy for marketing, product development and delivery of these solutions, from data integration to analytic detection to investigation management. His practice also provides advisory services to clients across the banking, capital markets, insurance, health care and government sectors. Mr Bradley has 20 years of experience delivering technology solutions across industries to address clients most difficult business problems. Prior to SAS, he was an executive manager for a leading global consultancy in the risk and regulatory space. David Stewart Business Director SAS Security Intelligence Practice T: +1 (919) E: david.stewart@sas.com David Stewart leads strategy development, drives product management and provides key marketing counsel for financial crimes solutions worldwide. In addition to working closely with financial services institutions and regulatory agencies, Mr Stewart collaborates with SAS research and development and implementation teams to deliver industry best practices for financial crimes solutions. Previously, he served as a SAS Business Manager for one of the world s largest financial institutions, managing a team responsible for implementing enterprise-scale projects devoted to customer relationship management and AML initiatives. In addition, Mr Stewart has held various relationship management responsibilities for financial services customers over the past 20 years. RISK & COMPLIANCE Jul-Sep

4 FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES MINI-ROUNDTABLE RC: In terms of recent trends, could you provide an overview of how technological developments are helping to combat fraud and guide corporate compliance with cyber security procedures? Specifically, how does this relate to detecting malware and other online attacks more quickly? Bradley: The concept of enterprise fraud management is changing. It still requires a focus on aggregating data across channels, and building holistic customer profiles, however with the application of behavioural analytics in real time, organisations can realise more accurate and faster decision making. In addition to this continuous monitoring, enterprise solutions are now optimising simulation and providing proactive forensic environments across a broader set of information. Through in-memory analytics, simulation that once took hours now takes seconds, allowing fraud analysts to test multiple methods. They can then deploy these new models much more quickly to better respond to flash fraud, and zero day threats that can manifest themselves in the online channel. Using storage technologies like Hadoop, more data can be stored and quickly surfaced within analytically driven discovery and visualisation interfaces, thus enhancing the investigative power and supporting identification of emerging threats. The analytics themselves are also advancing. One of the areas that banks don t get enough credit for is the significant role they play in working with law enforcement to assist in the prevention, investigation and prosecution of criminal activity. Machine learning techniques are being utilised to continuously improve detection models based upon recent trends and indicators. David Stewart, SAS Security Intelligence Practice RC: When it comes to financial crime, how should companies address the role of big data and technology in today s globalised world? Are new ways of applying analytics, such as Transaction Monitoring Optimisation (TMO), the way ahead? Stewart: When we think of the biggest financial crimes risks companies face, the reputational risk of doing business with criminal rings, sanctioned 4 RISK & COMPLIANCE Jul-Sep 2015

5 FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES MINI-ROUNDTABLE entities or regimes, or allowing your customers financial credentials to be compromised must rank highly. Given the speed and sophistication of these attacks, big data analytics can help firms assess their exposure, or collaborate with law enforcement to stem their exposure in near time versus learning about it after the fact. Leading firms are using analytics to validate and optimise their automated monitoring and detection systems to reduce false positives, improve the quality of detection and reallocate some of their investigative staff to focus on complex cases and rings. Transaction monitoring systems are very good at generating work items on subjects of interest, but visualisation tools can more quickly illustrate trends in flow of funds, correspondent bank activity, cross-border activity, and so on, at a global portfolio level that may represent emerging risks to the firm. RC: Once suspicious activity is discovered, what advice would you give companies as far as the initial steps to be taken? What role does technology play at this point in terms of understanding and reporting? Stewart: Firms need to be more efficient in detecting, triaging and building investigations on potentially suspicious activity. The first thing we do during an implementation is stage the data so that transactions can be bridged to associated accounts, and those accounts to parties, and if applicable to households or corporate parents. Rather than have an analyst review individual work items, we aggregate the work items to the subject. This reduces the number of widgets worked, and provides the analyst with a more complete view of behaviour for the subject. Next, we focus on presenting the appropriate level of information to understand Why are there events on this subject?, Who are they?, What s normal for this subject, and whether the triggering transactions and risk rating for the company merit further investigation. The role of technology throughout this process is to reduce queries to source systems, increase efficiency and provide governance through automated workflow to provide dual controls for investigation and filing of regulatory reports. RC: To what extent are Financial Crimes Investigation Units (FCIU) in banks and other financial institutions assisting in the detection and prevention of global financial crime? Stewart: One of the areas that banks don t get enough credit for is the significant role they play in working with law enforcement to assist in the prevention, investigation and prosecution of criminal activity. Leading institutions are building out proactive intelligence units that scour negative news events, referrals, case data, social media, consortium RISK & COMPLIANCE Jul-Sep

6 FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES MINI-ROUNDTABLE data and cyber events to detect previously unknown risks to their customers and reputation. Institutions are deploying distributed in-memory data architectures, global search, text mining, visualisation and network analytics to piece together bits of information across silos of data to identify gaps in coverage or trends within specific markets. When attacks occur, or when assisting law enforcement on critical events, institutions now have the tools to provide immediate answers. These technologies are absolutely necessary if the industry is committed to prevention. RC: How would you characterise the role that cyber security analytics plays in enabling detection, triage and response to breaches? Bradley: There has been mass investment in cyber security technology. Yet despite this investment, the average time to detect an intrusion is still measured in months, not minutes. This highlights the fundamental issue with the current approach to addressing cyber risk. With the constantly changing variants of cyber attacks, organisations can no longer simply rely on the known attack vectors profiled in existing perimeter or endpoint solutions. Storage and event management solutions have advanced, but still miss the mark. They collect but do not enrich the information or provide the depth of analytics required to make an impact. Cyber security is one of the most critical areas where the variety, volume and There has been mass investment in cyber security technology. Yet despite this investment, the average time to detect an intrusion is still measured in months, not minutes. Stu Bradley, SAS Security Intelligence Practice velocity of data can be a barrier to understanding an organisation s true threat landscape. Existing technologies look at a narrow area of security without effectively scaling to leverage enterprise information to detect and mitigate risks. Organisations must take advantage of their data assets and evaluate this information in much greater granularity that ever before. Understanding the normal and abnormal behaviour of an organisation s network requires the correlation and enrichment of billions of daily network transactions with business context and threat information across the enterprise. This creates smarter data that can be analysed in multiple different combinations and peer groups to 6 RISK & COMPLIANCE Jul-Sep 2015

7 FRAUD, COMPLIANCE AND TECHNOLOGY ADVICE FOR COMPANIES MINI-ROUNDTABLE drive better identification of anomalous behaviour. The ability to apply these behavioural analytic techniques in real-time captures a continuous picture of active security risks and helps security organisations better prioritise threats for further triage and mitigation. RC: In your opinion, how useful is behavioural analytics to detect suspicious customer activity and ultimately prevent fraud? Stewart: Behavioural analytics are absolutely essential if we want to detect unknown risks or behaviours. Fraudsters are clever enough to outmanoeuvre rules-based systems, so adaptive analytics that compare activity to the norm are required. In a fraud context, the ability to profile the historical norm for an account, a card holder, a customer, a merchant, a POS terminal, a device, a web session, and so on, is phenomenal. The more profiles available for a customer across multiple accounts, the richer our understanding of whether a payment transaction or new product application is legitimate. It s exciting where in-memory and event streaming architectures will take us in the ability to present more behavioural data to our models during the authorisation process. From a mobile and online perspective, being able to analyse session behaviour prior to any payment activity is the desired end state. Banks want to shut down anomalous sessions before their customers are compromised. RC: What do you see as the next major innovation in fraud detection and prevention? How do you expect the landscape to evolve over the coming years? Stewart: Given the millennial generation s demand for convenience and frictionless commerce, the biggest challenge will be authenticating that the user is who they say they are, while not impeding the customer journey. We will continue to see convergence of cyber data with behavioural profiles used for fraud detection. Real-time prevention will be faster and scale to higher transaction throughput, models and signatures will incorporate more data, such as biometrics, consortium, device, voice, and so on. Some of the information sharing among merchants and institutions is an interesting approach, but has much room for efficiency. It will be interesting to see how much privacy consumers will forego in exchange for convenience. We re already seeing that innovative fraud operations are more focused on improving the customer experience and being an enabler in revenue growth. Ultimately, some combination of biometrics, near field communications and analytics will drive further reduction in fraud and improved customer experience. RC & RISK & COMPLIANCE Jul-Sep

8 EDITORIAL PARTNERS E D I T O R I A L P A R T N E R SAS w w w. s a s. c o m As the leader in business analytics software and services, SAS transforms your data into insights that give you a fresh perspective on your business. You can identify what s working. Fix what isn t. And discover new opportunities. We help organisations turn large amounts of data into knowledge they can use, and we do it better than anyone. It s no wonder an overwhelming majority of customers continue to use SAS year after year. We believe it s because we hire great people to create great software and services. K E Y C O N T A C T S Stu Bradley Senior Business Director Chicago, IL, US T: +1 (773) stu.bradley@sas.com David Stewart Business Director Raleigh-Durham, NC, US T: +1 (919) david.stewart@sas.com 8 RISK & COMPLIANCE Jul-Sep 2015

9 RC & risk & compliance RISK & COMPLIANCE Jul-Sep

10 RC & risk & compliance JUL-SEP 2015