Page 14

D ATA R E C O V E R Y

IT COMPLIANCE WITH A SIDE OF BANKING BY PATRICK WHELAN | ALL COVERED

t’s not breaking news that compliance around information technology has become an ever-growing hindrance to community financial institutions that fall under the guidelines of the Federal Financial Institutions Examination Council. With the onset of the Gramm-Leachy-Bliley Act in 1999, protection of customers’ private information became paramount overnight. The mindset of “information technology is fine as long as it works” was no longer acceptable. Information technology now requires policies that govern all aspects of IT, documenting the existence of required controls. From the way bankers interface with their customers to the way records are stored, the operations and client deliverables of financial institutions have gone digital. This has resulted in institutions taking greater measures to ensure the confidentiality, integrity and availability of the digital processes of banking. Needless to say, the acts of Hurricane Sandy resulted in increased awareness as to the importance of availability. Just as institutions were starting to understand that customer risk was the same in smaller institutions as large, along came the largest natural disaster to hit the East Coast in decades. The impact of Hurricane Sandy increased the focus and attention to controls and redundancy of the institution’s computing infrastructure. Institutions were forced into a real-life disaster scenario and had a front row seat to witness how well they had prepared for unforeseen scenarios. Community financial institutions were at a severe disadvantage when it came to redundancy and geographic dispersion of information technology assets. Unlike mega and super-regional banks, whose primary and secondary sites can be hundreds and thousands of miles apart, it is not uncommon for community banks to have disaster and recovery sites five to 30 miles away from their primary infrastructure. This scenario works well for a building-specific scenario, but falls short when facing 14 | Banking Solutions 2014

regional disasters. Regional blackouts, snowstorms and terrorist attacks are now a part of all disaster and recovery planning. A question for every banker: “Why do your customers keep their funds with you?” The benefits of keeping your money in a financial institution are by no means holistic to the subsequent points, but as it relates to infrastructure, consider the following: • Institutions have a safe that slightly trumps the firebox stored under one’s bed; not only is it impressive in size, but it’s under constant surveillance from both human and mechanical controls. Security of the customer’s funds are carefully taken into account, and ultimately insured for up to $250,000 in deposits. • One would look a bit out of place traveling with this firebox on daily errands or vacations, so ease of access is a huge bonus. From widely accepted debit cards to ATMs, funds are much more accessible. If you are not big on recounting your chips after every hand, you run into an issue of knowing exactly how much your assets in the firebox are worth. Online banking has since taken over passbooks, but financial institutions, in one way or another, provide up-todate information about what customers’ assets are worth and were they reside. • There is a financial benefit to gaining interest on funds stored in financial institutions, whereas the funds in one’s mattress continuously lose value at the rate of inflation. From an infrastructure standpoint, we have seen these same benefits come from institutions moving their infrastructure to

Banking Solutions 2014  
Banking Solutions 2014