2020 saw many challenges for all. For financial institutions (and organisations across various industries tackling financial crime) the rise in cyber crime for financial institutions during a global pandemic became worryingly commonplace.
With financial crime and AML processes being front-of-mind more than ever, interviewees from our FinCrime Files series have described their top three challenges in fighting the threat to banks, challenger banks, payment platforms, funds houses and more, with some light shed on how these can be tackled in 2021 and beyond.
Bribery and corruption – Aon is a broker/intermediary firm in GI/Reinsurance. We are also a consultant in the retirement/investment and health space. We are in the business of being the middle man, which brings with it a higher risk of bribery and corruption.
Sanctions – I have now worked for two US listed firms and the current US Administration’s use of sanctions presents challenges in terms of how quickly sanctions are implemented and the reasoning behind them.
GDPR and all of the red tape – At Tide the security of our members’ data is at the forefront of all things we do and support. Data sharing would make life so much easier in financial crime, but the time and effort required to do this just doesn’t bring the desired benefit. By the time you’ve got to assess the information connected to the first account, the money is already in the fifth account.
The size of the crime and the lack of responsibility we all feel – Financial crime is ever-changing and to stay ahead of criminals we have to think smarter. I believe that to tackle the wider problem we need to be more focused on key areas and finding solutions that combat specific typologies and patterns. One area I feel needs a large amount of work is education into what actually causes financial crime. People don’t think that a bag of weed they’ve bought from their “friend” on a Friday actually leads to potentially funding terrorist activity. But guess what? It almost certainly does.
Innovation – In the past, firms were able to quickly introduce new products or changes to processes that did not necessarily have an impact on Compliance controls. However, as more sophisticated controls are applied, using advanced and integrated technical solutions, the impact of new products and processes has increased and needs to be considered carefully before these changes are applied.
Complex regulatory requirements – As compliance regulations are not consistently applied in multiple jurisdictions, it is a challenge for firms to implement globally consistent policies and frameworks in an efficient manner, but this is key to the deployment of effective controls and to protect the financial services industry from the increasing threat of financial crime.
Cyber-crime – We have seen a significant increase in fraud during Covid-19. Financial institutions need to introduce much stronger cyber protection both externally as well as internally. When we can demonstrate strong security and cyber protection as a company, client loyalty can increase, and market perception improves. Recent research has shown that protection of client assets is amongst the highest priority issue for clients when selecting a financial provider.
Operational silos – A key question to ask yourself is how do we fight against terrorist funding and prevent money laundering? One answer to this is to begin breaking down the operational silos. This will allow us to see patterns emerge and help prevent potential additional fraud. In addition, financial crime now includes financial fraud, money laundering and bribery, as well as a lot of new cybercrimes, which are even more difficult to monitor and prevent. The key message here is that Compliance needs to step out of their silos and begin communicating with legal, operations and their company’s sales team. This does not mean we are stepping out of our “2nd line of defence” role, we are merely putting on our compliance advisory hat and assisting our colleagues to do what is best for the company.
Integration – We’re pretty good at creating and managing AML or Fraud teams but they tend to operate in silos and work like a ship’s watertight compartments. Financial Criminals are not bound or constrained by organizational structures or hierarchies. I believe the future of Financial Crime goes through the progressive integration of “classic” Financial Crime (AML, Sanctions, CTF, Anti-Bribery & Corruption) with Fraud and also with Cyber Risk.
Culture – When I started working in Intelligence, we used to work under strict “need to know” rules. The 9/11 attacks changed everything, as the post-mortem investigation concluded how the attackers had left a trail of data but since there was no integrated analysis framework, they were able to operate without raising much suspicion. During the subsequent years, the Intelligence Community oversaw a cultural change where “need to share” progressively became the prevalent approach. We still had to be very careful in protecting data and sources but sharing data became crucial to analyse and neutralize threats.
Automated transaction monitoring – What we’ve seen is an increasing number of money laundering typologies and a broad range of financial crimes and emerging issues. One of those is “Green Crime”; the illegal wildlife trade, illegal mining and logging, illegal or unpermitted fishing are just a few examples. That means that the kind of tried and tested approach of applying rules, thresholds and parameters using automated transaction monitoring becomes less effective and operationally inefficient. I think the way forward is through intelligence-led monitoring and link analysis.
Cyber-crime – Cyber-enabled money laundering remains a priority both certainly for the regulators and for the industry. The challenge is identifying the interfaces between the traditional financial systems and cryptocurrency exchanges and that can be very difficult. Also, identifying which clients might be drawn into that type of activity.
Keeping up with criminals that are evolving faster than we are – Technology seems to be helping anti-financial crime professionals, but it is also helping criminals find new ways of misusing the financial system for their criminal activities. You need to be alert, vigilant and, sometimes even, think like a criminal in order to keep up! There is a lot of information out there and the challenge here is to be able to quickly filter the good information from the noise.
Keeping up with changes in technology – Technology cannot yet take decisions for us, but it can do a lot to provide us with the time to think, focus our attention on the real risks and allow us to take time to exercise judgment and take decisions. One challenge I see is how compliance officers today need to be aware of changes in legislation, need to think of ways to remain compliant but at the same time need to understand the evolution in technology to be able to appreciate how they can put it to good use. Compliance officers are asked to understand data modelling, thresholds, data management and structuring, statistical and business analysis and sometimes even computer programming!
Virtual currency or real-time transfer of money and the lack of transparency and resources within the tradition financial industry to appropriately monitor and mitigate risks has definitely been challenging and created the need for considerations of new, move innovative ways to tackle the space.
Regulatory requirements related to BSA compliance that create an environment of “checking boxes” instead of more focus on resources – money, time, people – to achieve what the BSA was created to do, identify and report meaningful information related to potential suspicious activity continues to be a challenge.
These interviews are all part of our ongoing FinCrime Files series. If you are an AML/KYC professional and are open to an interview with us about fighting financial crime, please get in touch.