Published: October 18, 2017
Striking the correct balance between the user experience we want and the security measures we need in order to avoid breaches, is a key challenge for today’s financial institutions. In practice, we usually see the scales favouring one side or another; either too much security that puts unwanted friction in the authentication space, or not enough, which provides the perfect environment for fraud. But what if there were a solution that bridged both worlds: a highly secure, compliant way to allow access to sensitive corporate or personal data?
Enter biometrics. Embraced by retail banks, the irrefutable security of biometric authentication is now finding its way into the world of the corporate treasurer. As passwords continue to be publicly flogged, the increasingly complex permutations driving us all slightly insane, biometrics are taking centre stage as the secure, unbreakable and cost-effective way to deliver impenetrable security and a frictionless experience to the end user. What started with the simple fingerprint, now inherent in many of today’s smartphones, has now developed to incorporate facial, voice and behavioral authentication, deployable across multiple operations and channels within a financial organisation. This view is backed up by analysts such as Gartner, who claim that in just two years’ time, 80% of organisations using biometrics will be using a combination of face, voice and passive behavioral modes, rather than fingerprints.
And finally, a clear driver for the adoption of this new tech is our old friend regulation. In the banking world, the launch of PSD2 is imminent, bringing with it new and stronger customer authentication requirements. In this case, biometrics provide the ‘inherence’ factor (something that a user is rather than has), so it wouldn’t be a stretch to imagine this authentication process finding its way into the transaction approvals process within today’s treasury department.
Since the inception of treasury management systems, corporate treasury departments have been controlling access and combating fraud by using checks and balances on systems access, and four-to-six-eyes authentications on sensitive transactions such as trade confirmations, payments and approvals. Great in principle, not so great when it’s a password that sits between sensitive data and breaches. Whether it’s a football team, name of a firstborn or simply the good ol’ P@55w0rd, our passwords are guessable, hackable and even shared. Fraudsters are getting ever more daring; at a recent treasury conference, I heard how a CFO was impersonated on the phone and ‘his’ demand for a high value payment “to complete a deal” was unfortunately actioned. This type of fraud has been exacerbated by the information we share on social media which gives the fraudster just enough knowledge to impersonate the person, such as knowing when and where the executive is on holiday for example.
Whilst once these types of attacks were confined to retail banks, now they are targeting the corporate treasury space. The problem statement is exactly the same. How can we provide better security, combat fraud but also make it very easy to use and access the financial systems that form the basis of our everyday operations?
It is a simple step to mitigate risks in today’s corporate treasury department by incorporating biometrics. There are several ways that biometrics can be applied to separate the real from the fraudulent, and keep your department safe. These include using voice authentication to authorise payments over the phone to confirm a transaction, and using facial authentication in place of passwords to grant access to finance or IT systems, or as a step-up authentication measure for treasury transactions.
AimBrain is a BIDaaS (Biometric Identity as a Service) platform that enables an organisation to identify its authorised users via face, voice and behavioral authentication.
 CYBER SECURITY WORKSHOPFrankfurt - 18th April 2018 Concerned about cyber threats to your treasury? Join TMI and 8com for an intensive 1-day workshop designed to give treasury professionals the skills to protect their company and their department from the dangers of modern cyber crime and fraud. Leave the session armed with a cybersecurity action plan - able to immediately implement progressive security measures in your business. |
The role of treasury, and the corporate treasurer, has been evolving over the past decade. And there’s no turning back – pandemic or no pandemic, ‘the new normal’ is here to stay. The business landscape is being shaped not just by Covid-19, but by digitisation, rapidly changing technology, geopolitical unrest and regulations for everything from […]
As corporations pivot towards digital business models to help weather the Covid-19 pandemic, regulation continues to shape the European payments industry. Treasurers must prepare for the changes that Strong Customer Authentication brings, while embracing the latest e-commerce strategies. Sara Savidge, Managing Director, and Colm O’Monacháin, Vice President, J.P. Morgan Wholesale Payments, explain the key steps […]
Global digital transformation has kickstarted the Fourth Industrial Revolution, also known as Industry 4.0. For corporate treasurers, this represents a complete shift in approach to treasury processes, technology and, most importantly, talent. Alan DuffyCEO, HSBC Ireland HSBC’s recent Global Liquidity and Cash Management Forum, held in Dublin, Ireland, highlighted the technological advances that are revolutionising […]
