Why are risk management and fraud detection key for digital banking?

As digital banking continues to rise, consumers expect to onboard and access financial institutions and smoothly manage their finances on any connected device.

Wherever they are.

In parallel, financial institutions face a dramatic increase in the number of cyberattacks, with more sophistication and complexity.

Fraudsters and hackers continuously challenge the security measures in place by financial institutions to protect their customers' sensitive data.

Here's an example from the Facts the Fraud 2020 report from UK Finance. We see that, even though financial institutions in the UK do a fairly good job and prevent approx. 60% of all attempted fraud, it still poses a significant threat with big losses. Mobile banking fraud losses are increasing rapidly, up 92% in 2019.

Thus, risk management strategies and authentication policies need to adapt and be more automated to cope with an increased number of connections, the creativity of fraudsters, and new regulations.

Financial Institutions need to use multiple techniques to monitor each risk and cyberattack, but solving this can be a real challenge with several vendors involved.

Banking Fraud

Source: UK Finance, 2020

 

We combine 5 risk manegement techniques.

There are five leading technologies to detect fraud, and Gemalto IdCloud supports them all:

  • IP intelligence,
  • device profiling,
  • customer profiling,
  • cyber threats detection,
  • consortium intelligence.

We are continuously evaluating, improving, and integrating new technologies to our cloud services to ensure you always have the best possible protection and stay one step ahead of the fraudsters.

There's more.

All technologies are reachable via one API, and only one contract is needed. 

 

 

Enhanced onboarding with risk management

By adding risk management to your KYC services, you can introduce adaptive onboarding, such as starting the whole process by checking for any signs of potentially fraudulent activity, before launching the actual KYC process.

The goal is to prevent ID fraud and lower false acceptance rate (FAR), one of the most important KPIs to track during digital onboarding.

It is also possible to lower the total cost of ownership by avoiding additional checks and abandoning high-risk enrollments at an early stage.

The best way to combat new account fraud is with a holistic, multi-layered approach to security.

Fraud prevention

Using device reputation, IP intelligence, and population profiling technologies and learning to recognize your standard user's everyday online interactions (comparing legitimate customer behavior and known fraudster behavior), it is possible to weed out criminals in real-time.

Read more about our KYC services for enhanced digital onboarding.

 

 

Enhanced access with risk management

By adding smart risk management services to the access phase, every customer transaction's risk level is analyzed in real-time. A recommendation on the most appropriate authentication method is given.

This process helps to make the right choice to minimize fraud, allow the transaction, block the transaction, or challenge the customer with a step-up authentication.

The result?

This can mitigate account takeover (ATO) fraud, and financial institutions can define a continuous adaptive authentication policy based on customer segmentation, customer preferences, use cases, and their own parameters. 

You can also introduce silent login, as mentioned in PSD2.

This means you do not have to ask for an additional 2-factor authentication at login if you have risk management in place to confirm the user is genuine.

This user confirmation can be done with the customer profiling technology available in Thales Gemalto IdCloud, based on behavioral biometrics

As all are running silently in the background, the solution provides a frictionless end-user experience

Read more about our authentication services for enhanced access.

Seek products and services that enable continuous adaptive access as a resilient response to advanced threats and improve UX.

Gartner "Market Guide for User Authentication," Ant Allan, et al., 26 June 2020
 

fraud prevention in SaaS mode

 

 

Benefits for financial institutions

Benefits of IdCloud Prevention

 

Comply with the latest security regulations

The risk management services in Gemalto IdCloud are the perfect answer to new security requirements raised by regulations such as PSD2 and FFIEC.

It offers real-time monitoring of the authentication and transaction process risk, as required in the RTS of PSD2.

Complex security policies can be defined based on the level of risk, transaction type, and user profile, as recommended by FFIEC.

It contributes to meet the requirement for more robust fraud prevention to fight against increasing attacks and fraud levels.

Data privacy regulations are becoming more stringent these days, especially with GDPR in Europe and CCPA in the US. This can be a real challenge to comply with if data has to be processed by several vendors for risk assessment.

The good news?

Our cloud platform has been designed for GDPR and CCPA compliance.

 

 

​​The future of financial fraud detection

Most financial institutions have already made digital banking fraud protection a top strategic priority, but fraud detection and prevention will only increase in importance and require ever-greater resources. 

We believe in taking a global approach to security.

That's why we strive to provide secure, durable, and innovative solutions to our clients. 

We are continuously evaluating and integrating new technologies to our platform to allow even better mobile fraud threat detection, device profiling, identity verification, and fraud intelligence.

We keep you safe, now and tomorrow.

 

One cloud platform to secure onboarding and access to digital banking 

Our risk management services are part of Thales Gemalto IdCloud.

Our cloud-based managed services let financial institutions combine KYC, authentication, and risk management to secure onboarding and access to digital banking services and enhance the customer journey.

 

This is done with one single simplified API.
 

fraud prevention services

 

More resources

DOCUMENTS

Gemalto IdCloud

Thales Gemalto IdCloud

Secure onboarding and access to your digital banking services

Gemalto IdCloud [PDF - 2.6mb]
fs-wp-psd2-vol-8.png

Risk management in the context of PSD2 and EBA’s RTS

Banks around Europe are facing the challenge of implementing the revised Payment Services Directive (PSD2) and, in practice, its related Regulatory Technical Standards (RTS).

Download the whitepaper

Get in touch with us

For more information regarding our services and solutions contact one of our sales representatives. We have agents worldwide that are available to help with your digital security needs. Fill out our contact form and one of our representatives will be in touch to discuss how we can assist you.

Please note we do not sell any products nor offer support directly to end users. If you have questions regarding one of our products provided by e.g. your bank or government, then please contact them for advice first.