Consensus needed on cloud security
If banks had been hesitant to move their data and processes to the cloud, recent regulatory requirements have certainly provided a final nudge in that direction.
The revised market risk regulation finalised by the Basel Committee on Banking Supervision at the start of 2016 – the Fundamental Review of the Trading Book (FRTB) – is expected to overhaul existing risk calculations at banks, making them more computationally demanding. One recent industry analysis estimates portfolio risk calculations could be expected to increase as much as tenfold.
It doesn’t help that pricing calculations are also becoming increasingly complex, requiring banks to factor in adjustments because of various costs associated with counterparty risk, funding, capital and initial margin – collectively known as valuation adjustments, or XVAs – into prices.
In the past, larger banks have thrown money at computational problems, investing heavily in their own data centres and advanced technologies such as graphics processing units. Banks that failed to join the bandwagon mostly did so because of restrictive IT budgets or legacy systems, which made the transition enormously challenging.
Cloud computing has been around for many years as a potential means of expanding the computing capacity of banks, but security concerns had largely kept most firms from taking the plunge.
However, that is about to change – whether the industry likes it or not. The additional strain on resources because of increased competition and regulations such as FRTB means banks are left with no other choice.
“There is no other way,” said one risk manager at a European bank earlier this year when the bank was starting to transition its FRTB and XVA calculations to cloud.
Three European banks have so far confirmed they have plans to use the cloud for FRTB and XVA calculations. One US bank is already using it to run stress tests. Some buy‑side firms are exploring its use in machine learning, portfolio optimisation and disaster recovery.
This all means that firms need to get with the times. They also need to become comfortable with the idea that their sensitive data and calculations will be hosted on an external platform that can, in theory, be accessed by anyone if security is insufficient – and the industry is far from reaching that level of comfort.
Security and compliance seem to be the major obstacles to more widespread adoption of the technology. Some vendors even argue cloud solutions have better security than in‑house security. However, many market participants are still hesitant to move their sensitive data to the cloud.
What the industry needs at this point is to put the issue of security in the spotlight and aim to build consensus between clients, vendors and regulators around how security can be managed. As with anything that tries to overhaul the way a certain business functions, this will take time and effort.
“This is as much a cultural challenge as anything else,” says Paul McEwen, group head of infrastructure and security engineering at UBS in London.
Read more articles from the 2018 Cloud adoption special report
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Technology
FX options: rising activity puts post-trade in focus
A surge in electronic FX options trading is among the factors fuelling demand for efficiencies across the entire trade lifecycle, says OSTTRA’s commercial lead, FX and securities
Dismantling the zeal and the hype: the real GenAI use cases in risk management
Chartis explores the advantages and drawbacks of GenAI applications in risk management – firmly within the well-established and continuously evolving AI landscape
Chartis RiskTech100® 2024
The latest iteration of the Chartis RiskTech100®, a comprehensive independent study of the world’s major players in risk and compliance technology, is acknowledged as the go-to for clear, accurate analysis of the risk technology marketplace. With its…
T+1: complacency before the storm?
This paper, created by WatersTechnology in association with Gresham Technologies, outlines what the move to T+1 (next-day settlement) of broker/dealer-executed trades in the US and Canadian markets means for buy-side and sell-side firms
Empowering risk management with AI
This webinar explores how artificial intelligence (AI) can strip out the overheads and effort of rapidly modelling, monitoring and mitigating risk
Core-Payments for business leaders: why real-time access to payment data is key to long‑term business success
Business leaders require easy access to timely, reliable and complete information across post-trade processes. Aside from the usual requirements of senior managers to optimise for risk, revenues and costs, they increasingly need to demonstrate to their…
Risk applications and the cloud: driving better value and performance from key risk management architecture
Today's financial services organisations are increasingly looking to move their financial risk management applications to the cloud. But, according to a recent survey by Risk.net and SS&C Algorithmics, many risk professionals believe there is room for…
Machine learning models: the validation challenge
Machine learning models are seeing increasing demand across the capital markets spectrum. But how can firms improve their chances of gaining internal and regulatory approval for these type of models?