Community
Most industries have migrated applications and data to cloud to stay competitive in the market, revamp current IT landscape, create innovative products & services, increase revenue generation, reduce infrastructure capital, consolidate, and monetize enterprise data through advanced analytics capabilities. Financial services industry is relatively slow and most BFS organizations are still having their critical systems running on legacy technologies that require significant effort and cost to migrate to cloud. Moreover, regulatory bodies impose policies that restrict certain data migrating across borders. Drawing an enterprise cloud strategy and roadmap is therefore essential to initiate cloud adoption. Private cloud model is a great option for BFS organizations as they have full control over infrastructure, data and services unlike the public cloud and can take advantage of the benefits that cloud computing offers. Private cloud typically are either Hosted, Managed or Virtual depending on role of cloud provider chosen by enterprise.
Why BFS organizations opt for Private Cloud
In addition, banking regulators are concerned over potential impact to critical business functions and impose penalties on FIs causing interruptions to services impacting customers. Security, Data-privacy, Operational resilience, Concentration risk are key factors governing migration of application workloads to cloud. While most providers are compliant towards these broad factors, application owner have an onus to ensure implementing various checkpoints to compliance. Prudential Regulatory Authority emphasizes on cloud providers operation resiliency based on concerns of impacts to UK customers due to outage. European Banking Authority has laid out guidelines for banks to have exit strategy in place to mitigate business impact due to high dependency on any service-provider. General Data Protection Regulation calls for data storage and processing by cloud providers with higher degrees of control. After 4 years of GDPR in effect, still many organizations are not fully compliant. PCI-DSS does not restrict storing card data in the cloud and has laid out guidelines to secure data when stored outside the organization that is a shared responsibility between the cloud-provider and the bank that needs to be clearly understood by the latter.
Suitability & patterns of migration in BFS
While many of the Fintechs, small and new-age digital banks have built their platforms directly on the cloud, many of the mid and large banks are still running on-premise infrastructure and are trying to move their workloads to cloud. Core banking functions are critical systems having huge financial impact in case of security breaches and are most suited for private cloud.
Channels and enterprise content management systems, Enterprise Integration, IT Development are suitable for private cloud while Enterprise tools such as email and office, human resource management, ITMS capabilities are more suitable for SaaS-based models.
When it comes to addition of new-age capabilities, there are readily available cloud solutions catering to credit risk analysis and scoring, financial portfolio planning, cards payments processing, regulatory reporting, insurance claims, settlement, and advanced analytics.
Some of the common migration patterns seen in private cloud migrations are
Prominent providers in Private Cloud space are
Considerations for migrating applications to Private Cloud
2. Application selection for migration can be made based on business functions that are related. In large scale or enterprise-wide migrations, identify application inventory along with their dependency map across the business-line or portfolio. In every migration wave, grouping applications and application components that are part of a user-journey can help minimize disruption to business and help focusing on stabilizing migrated functions on the cloud by timing the cutover activities during periodsof minimal business impacts.
3. Identify repeatable technology migration patterns, develop migration procedure handbooks, and create tools to accelerate migration.
4. Assess cloud foundation readiness to support needs of application migration and remediate any gaps prior to starting application migration
5. Cutover strategies to be drawn differently based on type of applications. Channels based applications having high user-base could adopt canary-deployments whereby cloud performance can be monitored and fine-tuned to optimal performance before peak traffic is serviced from the cloud
6. Decommissioning on-premise infrastructure resources is key towards successful migration and hence the period of co-existence between legacy and cloud systems needs to be minimized to achieve intended financial benefits of migration
7. Plan and estimate effort towards creation or adapting existing CI/CD setup and non-functional testing considering changes to infrastructure even when there is no code-refactoring required
BFS organizations need to develop a clear strategy and roadmap for cloud migration considering business value delivered, future-proofing applications, controlling cost and ensure regulatory compliance in order to stay relevant in the market. Until such time these are achievable in the public cloud with proven advantages, banks need to continue enhancing their capabilities in the private cloud and enable their workloads to be cloud-ready so they can be portable anytime with minimal disruption.
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.
Andrew Ducker Payments Consulting at Icon Solutions
19 December
Jamel Derdour CMO at Transact365 / Nucleus365
17 December
Andrii Shevchuk CTO & Co-Partner at Concryt
16 December
Alex Kreger Founder & CEO at UXDA
Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.
Please read our Privacy Policy.