Every market has its own level of financial risk; it comes as part of the deal. However, as the UK is a global banking hub – some argue the banking hub – the risks can be much greater. Patrick Brusnahan sits with Javier Sanchez-Ureta, data office director at Banco Sabadell, to discuss
Nobody wants their money to be insecure. Traditionally, a bank is thought to be the safest place but that is quickly changing.
Post-2008 and the global financial crisis, consumers have been constantly wary of their bank. Media coverage of cyberattacks and rises in fraud seem almost constant.
At the same time, alternative options were becoming available, from PayPal to mobile payments such as Apple Pay. An institution does not even need to be a bank to offer a current account any more.
Spain-based Banco Sabadell made strides into the UK in 2015 with its acquisition of TSB. This gave it access to one of the most monitored and most attacked markets in the world.
Patrick Brusnahan (PB): How big do you think the risk threat is at the moment in the financial sector?
How well do you really know your competitors?
Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.
Thank you!
Your download email will arrive shortly
Not ready to buy yet? Download a free sample
We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form
By GlobalDataJavier Sanchez-Ureta (JSU): I think risk is increasing but so is risk awareness. If there is a risk, everyone is now aware of it. Everybody hears about cyberattacks.
The noise about risk is high and now we have all known about it for years in advance and the impact it will have.
PB: Do third parties have a part to play in this as they are less scrutinised than banks?
JSU: A complaint from the banking industry is that we are so regulated and the newer players are not. It’s true, but it’s there and you have to deal with it and push the regulators to make an environment where everyone is on the same level.
PSD2 helps that in terms of sharing information with third parties. There is some kind of requirement there that all should comply with, not just banks, but fintechs as well. The risk is there but there are steps at the moment to put all of us on the same plate.
PB: Do you feel there is an issue with liability?
JSU: There are two sides of the coin. You have the relationship with the client that focuses on the good things, but you also need to be there for the bad things. Is this fair?
This model is good and showing the reality of it all. I think it’s the way the world runs.
PB: Is it good that you still own the relationship, even if it is through complaints or issues? Would you prefer customers came to you rather than a man in the middle?
JSU: If you can control the answer, it is better if you control the conversation. If you are doing well in your diligence, you do not have to be afraid to talk to your customers.
PB: How is risk in Spain different from other regions?
JSU: In terms of fraud, the UK is huge compared to Spain.
I am sure if I consider the UK to be the financial centre of the world, but in a huge market, it is normal the bad guys go to the UK more often. The situation is that fraud is higher in the UK than in Spain, but doesn’t mean we do not have fraud in Spain. In terms of volume, it’s very different.
For other forms of risk, it’s different and the levels of risk are the same. Global vendors with global risk and there’s no difference there.
PB: How is Sabadell combating these risks?
JSU: Cyberintelligence and sharing information are importance. When a client comes in, we will have information and share it with other impacted companies.
The good guys should share. This is the fix and part of advanced cyberdefence. With that, you are culturally in place. You try to cover your risks, but you need to be able to answer when something happens. These responses have to be quick and are not always tested, so that’s another problem.
PB: Does data analysis come into it at all?
JSU: Yes, of course. At TSB, we have iris recognition, we have biometric controls for users and two-factor authentication.
These controls have been in place, in terms of technology, for a long time. These are the preventive controls we have. Also, with voice recognition, these types of things are not business as usual.