tag:blogger.com,1999:blog-67276617148449841612024-02-19T23:18:14.763-08:00Making Business a Little Less RiskyNBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.comBlogger21125tag:blogger.com,1999:blog-6727661714844984161.post-8877565586241395092015-01-03T11:56:00.004-08:002015-01-03T11:56:43.415-08:00The largest public investment program in history...<div dir="ltr" style="text-align: left;" trbidi="on">
... rescues billions from poverty ...<br />
<div class="separator" style="clear: both; text-align: left;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjmGyfJ0gfiaK_SsYhQRiCW-gEIAo_byokoSuaHOpBWs4U22MegdtmDDsM-bJGtRdpvhkrULNYJupV0Aj05mawJUWDk-J52H6o1r_bEjtwduQYUzr3pnJfwBcfkwN-YNVEQ-q1Klnk4s3vs/s1600/20130601_LDP002_0.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjmGyfJ0gfiaK_SsYhQRiCW-gEIAo_byokoSuaHOpBWs4U22MegdtmDDsM-bJGtRdpvhkrULNYJupV0Aj05mawJUWDk-J52H6o1r_bEjtwduQYUzr3pnJfwBcfkwN-YNVEQ-q1Klnk4s3vs/s1600/20130601_LDP002_0.jpg" height="180" width="320" /></a></div>
<br />
<i><span style="font-size: x-small;"><a href="http://www.economist.com/news/leaders/21578665-nearly-1-billion-people-have-been-taken-out-extreme-poverty-20-years-world-should-aim">Economist</a>, June 1, 12013</span></i><br />
<br />
... and begets the largest fraud in history.<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEizVYuF8YBEMhqwReI8g6d9_GeQw-PvN5MduaGbDzWgWFoHeaqHvB7TicePpZHhOamVbeUBrDcyAiWrC5MIsFzJXKW41hY__A1k8u-D0bd3vwfXzVmF72wbsDZxj1erF_0VEOH9-3ZEMpQ/s640/20141129_094040.jpg" imageanchor="1" style="clear: left; display: inline !important; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEizVYuF8YBEMhqwReI8g6d9_GeQw-PvN5MduaGbDzWgWFoHeaqHvB7TicePpZHhOamVbeUBrDcyAiWrC5MIsFzJXKW41hY__A1k8u-D0bd3vwfXzVmF72wbsDZxj1erF_0VEOH9-3ZEMpQ/s640/20141129_094040.jpg" /></a><br />
<br />
<br />
Transparency, checks and balances should never be optional.<br />
<br /></div>
<!-- Blogger automated replacement: "https://images-blogger-opensocial.googleusercontent.com/gadgets/proxy?url=http%3A%2F%2Flh6.ggpht.com%2F-Gs4Dq-qG430%2FVKhHu7Oy7qI%2FAAAAAAABCzw%2FVZxBi7bn1hc%2Fs640%2F20141129_094040.jpg&container=blogger&gadget=a&rewriteMime=image%2F*" with "https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEizVYuF8YBEMhqwReI8g6d9_GeQw-PvN5MduaGbDzWgWFoHeaqHvB7TicePpZHhOamVbeUBrDcyAiWrC5MIsFzJXKW41hY__A1k8u-D0bd3vwfXzVmF72wbsDZxj1erF_0VEOH9-3ZEMpQ/s640/20141129_094040.jpg" -->NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-17745377527665419552014-03-06T09:21:00.001-08:002014-03-06T09:21:46.519-08:00Do We Need Ratings Agencies? <div dir="ltr" style="text-align: left;" trbidi="on">
<br />
TED.com recently<a href="https://www.ted.com/talks/annette_heuser_the_3_agencies_with_the_power_to_make_or_break_economies"> published a talk by Annette Heuser</a> about ratings agencies. She argues that the current ratings agencies need to be replaced with a new, non-profit one. This, she feels, will resolve current potential conflicts of interest and will, presumably, lead to better ratings. Specifically, her focus is on giving sovereign debts higher ratings in order to reduce borrowing costs for countries which have a poor credit history.<br />
<br />
Unfortunately, her proposal suffers from a misunderstanding of basic economics. The issue is not public vs. private. The issue is who pays. Currently, as she says, the issuers (who are being rated) pay, causing the potential for conflict of interest. The potential conflict obviously doesn't go away if the rating agency is non-profit. A non-profit still needs to cover the costs of their research and rating process. Thus, the very very simple fix is to switch the payer from the issuer (country or company) to the lenders and buyers of the securities (banks or investors). This could take the form of a transaction fee, or it could take the form of a consortium whose budget is covered annually by buyers/investors. I would strongly suggest that Annette refocus her attention on this aspect and ensure that INCRA is funded thus. Her focus on non-profitism, transparency, breaking the grip is just a set of side-shows.<br />
<br />
But wait, there's more. An achilles heel of any ratings agency is their reliance on their chosen rating methodology/algorithm. As we saw in 2007, securities with AAA ratings crashed. This objectively demonstrated that the prevailing rating methodologies were inadequate because they did not accurately factor in all risks and probabilities and/or did not accurately represent them to consumers. Ms. Heuser's proposal to clone the current (flawed) rating-agency structure would no correct this problem. A far better solution would be to empower investors.<br />
<br />
How?<br />
<br />
Replace ratings (the conclusion of one entity's analysis) with <i><b>the ability to rate.</b></i> In other words, give investors the ability to formulate their own conclusion, and to see what others have concluded. To do so, empower investors with powerful analytical tools that can access rich, diverse, open-source data.<br />
<br />
Now is the time. All of the component pieces are proliferating today. OpenGovernment info can be combined with open-source historical markets and financial data, open-source regression models, data analytics, data visualization tools.<br />
<br />
Of course, there are issues to be sorted out. The first to get these right will have a massively winning business model:<br />
<br />
<ul style="text-align: left;">
<li>Making money - who pays? for what? how is it priced?</li>
<li>Messy data - to be valuable, the platform needs data from a multitude of sources. Necessarily, data will thus be heterogenous in terms of structure, quality, accuracy, completeness, encoding, and definitions. To be useful, the platform will need to provide ways of using a heterogeny of data without degrading quality of outcomes</li>
<li>Source Neutrality - are certain data sources "better" than others? Should certain data providers be made preferential? Should opinions or interpretations or results of analytics be included in the data? If so, how should they be differentiated from raw facts?</li>
<li>User Neutrality - should all users have access to all data? Should users have to subscribe to specific data sources/quality levels/time periods?</li>
<li>Modeling skills - Will users have the ability to create their own valid ratings? Will they have the requisite knowledge of data, probability concepts, risk concepts, details of financial products? How can the platform abstract these concepts? </li>
</ul>
<br />
Bottom line, ratings agencies are relics of a prior age, just like Encyclopedias and farriers.</div>
NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-27748724545326525592014-03-02T09:23:00.000-08:002014-03-06T09:24:03.846-08:00How Your Customers Should Think About Bitcoin<div dir="ltr" style="text-align: left;" trbidi="on">
Bitcoin reminds me of the Gold Standard or UN SDRs. They're great in concept, but probably needs to weather a good crisis or two before I'll trust it.<br />
<br />
The first thing to understand is that it is a bearer-owned stored-value mechanism like gold, dollars, or bearer bonds. It's not a payment network like paypal. It's not a payment mechanism like a credit card. It's not an account. Whoever physically "holds" the bitcoins owns their value.<br />
<br />
This leads to one great benefit: Unlike the USD or other national currencies, no politician can use them as a political tool by using inflation to ruin the value or using executive orders to inflate the value of Bitcoins. So, like gold, they <b><i>should</i></b> be safe stores of value, immune to a specific country's situation.<br />
<br />
But the reality is far less sanguine or simple. There are problems:<br />
<br />
<ul style="text-align: left;">
<li>The notion that it is outside the influence of governments hasn't been tested. I'm sure government lawyers are working on this. Every single time a bitcoin changes hands, its authenticity is verified at the central database. This means every transaction and transfer can be monitored. The amount of data is too juicy for the NSA to ignore. But will other parts of the government (executive branch, for example) also get ahold of the info? </li>
<li>The way they determine the value of the currency. Bitcoin is based on supply and demand. Because it is a small market with relatively few traders, it is easily manipulated. The issuing company says they are increasing the supply steadily based on the size of the economy. The good news is that, since </li>
<li>Counterfeit. Every computer system has weaknesses. Even the most secure networks have been attacked, and most of them have been compromised at some point. I don't trust that Bitcoin is secure enough, if for no other reason than because it hasn't been attacked hard enough. </li>
<li>Fraud. There are system-administrators in the Bitcoin foundation who must have special system access in order to do their jobs. These people could certainly be bought off for the right price. We haven't invented a really technologically fool-proof way to avoid this yet. Mt. Gox is the obvious example of what can go wrong here.</li>
<li>and, of course, not many places accept bitcoins as payment (currently)</li>
</ul>
</div>
NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-74531098845737568432012-06-29T10:03:00.001-07:002012-06-29T10:07:19.116-07:00Is the Future More or Less Secure?<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDkD_g7EAG1wGq5ZT39ZG9fQcy7haQYRwWIcm9RLF5KyB0ct5dh6TAB0PraRM9mWjeDbDsBRRGMMTzHNC3xVCK4OclC1qDlGyLXSwaIxaXUFjKdQT7QU9wxmYGulQG3LwZJph_TIYXMiqm/s1600/cybersecurity.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="124" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDkD_g7EAG1wGq5ZT39ZG9fQcy7haQYRwWIcm9RLF5KyB0ct5dh6TAB0PraRM9mWjeDbDsBRRGMMTzHNC3xVCK4OclC1qDlGyLXSwaIxaXUFjKdQT7QU9wxmYGulQG3LwZJph_TIYXMiqm/s320/cybersecurity.png" width="320" /></a></div>
The <a href="http://www.economist.com/debate/days/view/853/CommentKey:1498028">Economist online is currently hosting a debate</a> about cybersecurity and specifically the question of whether we are headed for a more or less secure world as interconnectivity increases. My vote is "no" for the following reason which I posted to their debate site:<br />
<blockquote class="tr_bq">
<span style="color: yellow;"><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;">It would be quite difficult to compromise security if we each existed entirely in our own hermetically-sealed network like an egg in a carton or a standalone PC on a desk. Each connection with the outside world creates a perforation in the egg shell and creates a security risk in the form of a point of potential compromise. The perforation can be compromised or the "tube" connecting me to the next "egg" can be compromised. Further, the "egg" I'm connecting to can be compromised. Or an "egg" connected to the one I'm connected to can be compromised. As you can imagine, hyperconnectivity increases the number of points of potential compromise exponentially with time.</span><span style="background-color: white;"> </span></span></blockquote>
<blockquote class="tr_bq">
<span style="color: yellow;"><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;"></span><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;">Our current risk-mitigation approach tries to hermetically seal all the perforations, joints, and pipes by wrapping them in a "fortress firewall." This becomes exponentially more difficult with the increase in points of potential compromise. Attacks are inevitable, as are compromises until and unless our approach to risk mitigation shifts from a "fortress firewall" approach to one in which we can examine, wrap, and filter actual bytes of information as they float around cyberspace.</span><span style="background-color: white;"> </span></span></blockquote>
<blockquote class="tr_bq">
<span style="color: yellow;"><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;"></span><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;">While I don't know what this approach will look like in practice, I predict it will include a strong focus on data provenance. Imagine an "HTTPS 2.0" in which we not only wrap packets of data in an encrypted security layer, but also give that packet the ability to either reveal its contents or self-destruct based on who/what/where/when/WHY it is accessed.</span><span style="background-color: white;"> </span></span></blockquote>
<blockquote class="tr_bq">
<span style="color: yellow;"><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;"></span><span style="font-family: Verdana, Arial, sans-serif; font-size: 13px; line-height: 20px; text-align: -webkit-auto;">Until then, data security risk shall continue to increase.</span></span></blockquote>
</div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-63248443625111635002012-04-10T09:28:00.000-07:002012-04-10T09:28:13.034-07:00Did You Know? ... The Makeup of the US Financial Services Industry<div dir="ltr" style="text-align: left;" trbidi="on">
This is the first of a new "Did you know?" category of posts which will appear periodically on this blog. These brief posts will contain industry statistics relevant to risk and financial crime management.<br />
<br />
Quite often, both in the Consulting arena and in Financial Services, analyses require an understanding of the industry. Hard statistics are often ... well ... hard to come by. My intention is to provide a quick public point of reference for this type of information.<br />
<br />
Statistics posted here will carry a source URL link, as you can see below, or a citation.<br />
<br />
Today's stats relate to the overall size and makeup of the US Financial Services industry. According to <a href="https://www.hsdl.org/?view&did=697054">a recent report by the Department of Homeland Security</a>:<br />
<br />
<blockquote class="tr_bq">
<span style="color: orange;">1. Deposit and payment systems and products ($12 trillion in assets; 17,000 depository institutions)</span><br style="color: orange;" /><span style="color: orange;">2. Credit and liquidity products ($14 trillion in assets; many thousands of credit and financing institutions)</span><br style="color: orange;" /><span style="color: orange;">3. Investment products ($18 trillion in assets; 15,000 providers of investment products)</span><br style="color: orange;" /><span style="color: orange;">4. Risk-transfer products ($6 trillion in assets; 8,500 providers of risk-transfer products)</span></blockquote>
</div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-1236308774868764752012-01-12T08:30:00.000-08:002012-01-12T08:30:02.799-08:00Quote of the Day: KYC --> EPS<div dir="ltr" style="text-align: left;" trbidi="on">
<blockquote class="tr_bq">
An organization that positively knows its clients can obtain a commercial advantage over rivals.<br />- KPMG, Anti-Money Laundering Compliance in a Changing Risk and Regulatory World</blockquote>
</div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-45790137495224436742012-01-05T09:05:00.000-08:002012-12-12T09:31:40.758-08:00Food for New Years Thought: The Future of Banking<div dir="ltr" style="text-align: left;" trbidi="on">
<div>
Every consultant worth his salt is busy trying to write something prescient on the future business model for banks. GLG Research recently <a href="http://www.glgroup.com/News/A-New-Bank-and-Bank-Model--A-Bank-of-Innovation--What-would-it-look-like-to-you--54817.html">published a report </a>calling out the following key parameters, with a focus on retail banking:<br />
<blockquote>
1. Peer-to-Peer (P2P) Lending: An advanced technology that eliminates middlemen and directly connects borrowers and lenders.<br />
<br />
2. Prepaid General Purpose Reloadable (GPR) cards: In return for modest commissions, a global agency network of convenience stores and retailers are now enabling cards to be “loaded” with cash. When equipped with remote deposit check capture, direct deposit, bill payment and ancillary credit, savings and investment accounts, these cards make traditional bank branching redundant. eWallets such as those touted by ISIS, Google, Visa, Amex, Paypal and FaceCash are the offspring of GPR built on the same infrastructure; similar economics but a different, arguably more convenient, access device.<br />
<br />
3. Social Media: Social media like Facebook and LinkedIn can offer insight into customer behavior that can be applied to enhance customer acquisition, retention, and even underwriting (<a href="http://www.freepatentsonline.com/20110112957.pdf">http://www.freepatentsonline.com/20110112957.pdf</a>).</blockquote>
Banks which are early movers in this area have a great opportunity to reverse the post-2007 profitability decline. Success, in my opinion, will depend on three things:<br />
<ul style="text-align: left;">
<li>Getting it done quickly </li>
<li>Getting the customer experience right</li>
<li>Getting the risk management right</li>
</ul>
Those aims are, in many areas, conflicting. A balancing act is required. Wading too timidly into these areas might cause impatient "early adopter" customers to defect, or at least decrease their activity level. Making a big splash in these areas without consideration of risk factors invites the wrong kind of customers and is sure to balloon losses. <br />
<br />
Critical to all three of these emerging trends are the "Three Risk-Management A's of Next-Generation Banking"<br />
<ol style="text-align: left;">
<li><span style="font-size: small;">Analytics: Collecting the necessary data about behavior as well as customer preferences to objectively understand and address behavior in a consolidated, risk-based, customer-centric manner </span><div class="O">
</div>
</li>
<li>Authorization: Making an informed, risk-based decision about what the bank allows the customer to do</li>
<li>Authentication: Making sure the transaction is being done by the customer, not a fraudster</li>
</ol>
</div>
Periodically on this blog, I will individually look at these trends, highlighting the risk implications for the future banking business model.<br />
<div>
<br />
<br /></div>
</div>
NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-361471286719942572011-12-27T09:10:00.000-08:002011-12-27T09:10:00.345-08:00Employee Fraud Thanks to the Cloud<div dir="ltr" style="text-align: left;" trbidi="on">
Peer-to-peer and cloud-based file sharing may have been designed by punk kids to get free music, but now some of those punk kids are punk employees of the world's financial institutions. They have not forgotten their craft, according to the Federal Trade Commission:<br />
<br />
<blockquote class="tr_bq">
"when P2P file-sharing software is not configured properly, files not
intended for sharing may be accessible to anyone on the P2P network. ... we found health-related information, financial records, and drivers’
license and social security numbers--the kind of information that could
lead to identity theft."<br />
-- FTC Chairman Jon Leibowitz on the <a href="http://www.ftc.gov/opa/2010/02/p2palert.shtm">FTC's website</a>.</blockquote>
A very small fraction may intentionally use these technologies to steal sensitive or private information about the institution or its clients, but a far larger number are unwittingly exposing this information to the open Internet.<br />
<br />
<br />
Coverage also at the <a href="http://www.washingtonpost.com/wp-dyn/content/article/2010/02/22/AR2010022204889.html">Washington Post</a>.<br />
Many of my clients block P2P clients and websites as well as related traffic on company-owned PCs within the institution's firewall. PCs on desks in offices are probably safe. But before you pat yourself on the back, though, make sure you're looking at all potential exposure points. Wherever there's a hole punched in your corporate firewall, there's a potential loss. Ask yourself two questions:<br />
<ol style="text-align: left;">
<li>Is the same level of protection and surveillance being placed on VPN, email, webmail, virtual web conferencing, mobile email, and all other devices which span across your firewall DMZ? <br /> </li>
<li>Is your monitoring / blocking technology based solely on the sources and destinations of traffic (ex. "safe" and "prohibited" IPs) or does it also monitor content? Perfectly benign channels such as email or virtual web conferencing usually allow files to be transmitted outside the institution in order to facilitate essential communication and collaboration. Can you, without killing these valuable tools, control WHAT data is transmitted? </li>
</ol>
If not ... time to make a little space on the roadmap for new controls.<br />
<br />
<br />
<br />
<br /><br />
<br /></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-77017303320261126452011-12-17T09:32:00.000-08:002011-12-17T09:32:13.734-08:00What the C-suite Needs to Know about Fraud: Elevator Pitch #4<div dir="ltr" style="text-align: left;" trbidi="on">
<img alt="" src="data:image/png;base64,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" /></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-18888399003016722062011-12-12T16:59:00.000-08:002011-12-12T16:59:35.367-08:00What the C-suite Needs to Know about Fraud: Elevator Pitch #3<div dir="ltr" style="text-align: left;" trbidi="on">
<img alt="" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAANAAAAHoCAIAAAC3mPZXAAAZ2klEQVR4nO2dT4xf1XXH38obs5lN2OAFsGg2nkXbRRIpTVVqqWrVpl2wAIHkKKA6pI0rCI1FpGiqtEREAqEquDWoqlUBcjCyJ8MwxhhkVPPHxUnqUpcAdjC4LhgXF0rBGKOZ18WE5zf3nHvuuffdd959v9/3I2t0f+ed/+/L7zfz+41NVQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYCSsX3/Z7MbZG6678YbrbvzOt7f96N77Vs+brtl01ZVXD90dmBQu/9zlv/97f7Bj+wOPzy/tXzpw/JUTx1858ebJU2ff+e/V8/OHDi8t7JvfvfCdb2+b3Tg7dL9gtMzMzNy69baFPYtHDv/03LvnapELFy68efLU/qUDD+586Itf+NLQvYOxcdPXbt67+yfHXz2xvLwsS83hf9//4OCBZ3ZsfwCvs0DF+vWX7dj+wL8fPXbx4qdRUmtz7t1zi/NLv/s7m4aeBpTNhis2PPxPu4IvoBqWl5cPPvXMlpu/MfRMoFSuuvLq+UcXPvy/D3kFfXx25a0n6xP31y/NXfrz+s6VMwfrT97zye5ff3r0r//qzqEnA+UxMzPz44d2n//oPBXNytlnV372FyuHrpX+HL2jfv8Yq7kXDx/5+uabhp4PlMS6dev+/kc7mFfSD15bOXpHQGqtP/Wxv6k/Pks19+TSAfzoCi7xZ7f8+X+89LL7xPbWkyvPXa9X26/+vLCZPtVdvPjp3t0/mZmZGXpQUABXXXn10sI+90npjYeipdb+c/ZZJ9+Zt9+5+657hp4VFMDdd91z5u133Oe2Lmo7dO3Kc9fT57mlhX14c27aYZ7e3j+W8krKvrau/ekVT3Kg+t53506fOr3m6e3nt2dQ2+rPECfud57kFueXLv/c5UMPDYbjsT2L7U8UVt59MZfafqW5D0+2BXf0Z//2x3/0J0MPDQZiduPs/qUDa57eYt4ESXiSO/fuuR3bHxh6bjAQ3/rm1pO/fOOSHD55L6/aVg5du3LkFudV9fH5pfXrLxt6dDAEd37/B2+dfvvS09uZg/kFR15VF+eXNlyxYejRwRDs2P7Amk8XOr735vuz9j25/UsH8HuaU8qju/as+fD0tft6Edzpxbbgnj90eNM1+LWlqWR+98KFCxcuaeGluV4E9+YjEByoqqra9eAja34Z6ZV7exHcqb1twf3zwUNf+fJvDz06GAL3e7jXd/YiuDMH8T0cqCryMcPK6cU+BFd/8JrzUyo+bJhSNt/4tV8ce+WSFj46nV9wL2yuly82FZaXlxf3Pr5u3bqhRwdDsOGKDYvzS+2nn5Ujt2R+env5h+38b51++87v/2DoucFwOO+MrLz5SOZnuHdfxI+o4BLf+NNbXn259T3W8sWVf7k5m9qO3tFW2/Ly8mN7HsfnWlPNzMzMwp7F9t92zvDbl83r6doPtY6/euLWrbcNPTEYmlu33nb81RNtZdQn7s8guLUfMCwvLy/sWcRfawDMk1y9fLHjpw716zvrteDpDVzi65tvevHwkTUCWb6Y/MFD/cZDjtrOf3T+kYd347s3cIm77vzhmydPOUJZObU37u83vLDZ+Vxh9cV0cX4Jf30GrGHdunX/cP8/vvc/5B9t+Pis6rdInru+fn1n/Snzz0Q89cTTv/Xlrww9HyiPmZmZB3c+fPo//4uKpv7kvZUzB+tX7nX/zYef316/dt/K2WdZqS0vLz/1xNNf/cOvDj0ZKJX16y/b/rd/9/KxXzCai+T8R+cX55fw3AbC3H7rXx488Iz3n1FScPzVEz9+aDe+bwNavviFL+168JHnDx1m/z0lgdOnTi/OL9269Ta85Qai2XTNpkd37dn32P6Tv3xDVt6Zt995/tDhxb1L3/vuHH77CHTi87/2+W99c+uju/YsLezbv3TgqSeebv798v1LB/YvHXh8ft/dd92z6ZpNeFYDObnqyqtnN87+xq//5g3X3bhvYf+mazbNbpyd3TiL328DvbNvYf/QLYBpAoIDpkBwwBQIDpgCwQFTIDhgCgQHTIHggCkQHDAFggOmQHDAFAgOmALBAVMgOGAKBAdMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEBwwBYIDpkBwwBQIDpgCwQFTIDhgCgQHTIHggCkQHDAFggOmQHDAFAgOmALBAVMgOGAKBAdMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEBwwBYIDpkBwwBQIDpgCwQFTIDhgCgQHTIHgTNmyZcvcdDP/6MLQLQzJli1bTAU3NzdXgylmbm4OggN2QHDAFAgOmALBAVMgOGAKBAdMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEJxL02rsVWWgg6YTn7NjDFYXapkBwbm0u9VfqlMFJ6eSnR1LMGFwdgMgOJd2t7GXav+tlRMGjaydfSi3NzgQnEvwtgmX6kjBsXafZ00053hq2hscCM6luTfOTfLZNVf19mZRQntyLFtLzmkJBOfiu23620kdZGMwNtgqfdglba9AcC7NvfHdM3rzfJ7Uh0VIpWyVPtS0NAgQnEtzb3z3THMvqdG3kGAgG8s6Cw/ZtIMAwbmw90m4ecKwvrT0oWz3ZZZzCp4DAsG5sPdJuHnCsL60PovPGGwvWCKY1gwIzoW9o6yxFm+kc4l6NjuRAzXtCYHt5ftyWgLBudC72HylDsKNpHmoZ7MW1hj0jyrh69MYCM6FvYvUQj3lVD5n1i7vUG7VV0Ju1QwIzoW9i9RCPeVUPmean17y+fgaCw41IBAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApIxZcO63ek3WW89CrvumEoprqCTk187JJuixKiGUvtRml4HzJ9Z6V/0YKGaLSKkvLnpqEscuJ7YF1862a2h3GJzjfzNQoe1aee+lzpv5yWmVpn6c+kB0kqrGMi5KnqMcrOM2lWE/Wn73ky9y2a3yCfUZVTG4s46LkKerRCU45lcaz7dCcnaigXZMz2JhmKOXgCamyLErfIQS35uxEBe2anNShSrpVbGyCm3IW1kEYUDkFBLfm7EQF7TShk5PFFxjrKY8mJ5Fn8fn7zpo8q0Bwa85OlGxnCfr4OlE605DgjL6h2Ie+JMHYYJ5VIDjv2edQ68TEhnQcKjk2OEv3WGUnEyW4qPl9zs1ZyBZMzvr4oqJaVU6hd0telGPR7KQeneCEwYRdBJ3bD5szawxmDvZDA4PZlIMku6UtyjFqdlKPV3CV4l6yRtZOHzZffQ40LVtF37wmW3BAjVvGRTluwSnqMQrOmbCN3rMSbzn1kR8KTWrs8sYSBpHd2Mai8vuGCu6kHqng6I70nqyzY6ee8kOhqNCMrz2h2+AgGjchNnZRykttRiw4MEYgOGAKBAdMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEBwwBYIDpkBwwBQIDpgCwQFTIDhgCgQHTIHggCkQHDAFggOmQHDAFAgOmALBAVMgOGAKBAdMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEBwwBYIDphQhuCr1/zRlhkGHUSXK2VhsJxCcihIEV+aWILhegOB8jFtwlef/S9eEOyHtQBrls8caa89a6SVlEjoILeGkog+Fovo10omiUtG2gxQnuIrslM7v89ScE4ztWk7b+nLBhvN2rlyjM05sKt9mBIoTnGyUt+NzTssWTOsY9Un0Y3ZPFcyfq6iSCRFcG8eN2gVL28424+shKolmzFyp5MHpRMlFlUyI4NjZgj4dS1REIsokUXcxISq28+z5BUYmuODMPueMJXxGOUlyD7k614+TVlTJCATXrECYkzq07cFsQSPNTHuQk/h6YGdno3zO8nKCgweLyqmEbCxFCG5KiL03EwkE1y+V/1l5OoHgeqeZfehGigCCA6ZAcMAUCA6YMl2Cq9TfSOk9++5kwpguwTUE7/cEC2LY0SC4RIfxAsHF0aSSjdVn75j7jJX6zXoaHuykDr1Zz3aln4XWjQqUZ++VkQmOblMwUgc5xOfQvhosGuupdNZn1i9BOPfHiAUnO/hugJxHdtDc4C7GLM7JpW2YEMG1S1BPanTyyOFsdWcuTdGgMSptln7agXTePpgEwQXXSo3sVZ+D7Nmxk+S0WfrxOffHiAVHN7hagj37DkK4srqmE8EzKm2WQE2G/hiZ4GrPS0BjcdbqeFacIIRwWjqhk7Ynmz+YVnPWB7Kz01R1P4xPcEr6W9lYGugCBBfN4Pd78Aa6AMFFM/j9HryBMplYwYEygeCAKRAcMKV0wVXFfyfEdlh+28l0HA2C6woEFwUE1xUILopCBbfqXJP3yhu7YHQClVFRRl+HTg9yh3pP5RI0npp52wmV8+opUXDVWq04RschY5TS6KvlG6GjUdMDdfZFyal8SYLz6ilacOzMPqMcHnROTqVPS8/BnGxyTYlgh2yqLNlkxiS4NsLwTjiNcuzUqAlnz8q2a4/gNAPKPsG6ciohmzyvnjEJTvaUw9McfMvNlSGqVZ+/fl3BVFEl0hil4BKMrMNqS11S1SGhCJ7CQzY82HlwnGAqTRtsNj0lCq7ZAt2FY2GNQYe6teWE/EKHbA9CBl/OoA9bQlk3GCVPISTUUKjgQBod1WAABDd6qnyvdwZAcJNAs96hGwkDwQFTIDhgCgQHTClUcFXM+5bKq8Gck0SuYbMvbayC6zW8D4xbyi64XAkhOCMguFWKEFxz1ZnTZ6SLYD19K2ND2pbKs1xfn+y57ckGBkf2dejbiePZvW2nK7pJtrTM8IJju2fHizImJKdXNX12MQpdJczCdpur7WD/SsoSnDxSrNHJnJCne5+yp6YBfdtsOTmtPpxdpi9cYHjB1ern/CijkzAtDxvuMzpnzUSaBuhQ7cxsV/q0dEW+/OwyfdUFihCcck0Jxo552N58RtnB55nmIBfVp9UXdQrRcCXDC06//QRjWgi7xz767O7AtqpJKzxsb0Ao5CstM7zgmgl9q5F3l2AUClXif7i0z7aRpmKTR43Mdui76nQlt83G0g20D3RwtrRMEYIrjbRVjo6OY0JwnagUTxsTBgQ3ME2TQzfSOx3H7BIOwQFTIDhgCgQHTBmT4KrQm0+D0L0ZuqVcmYN1k68mA8F16qSOacbnOfg4LBAcBGfK1AmuCaErYHdRffYWedvN8aQ5hULUk/X3OVM3ISEzP5lXP47S2TlHXU2mUMGxk9ODE1JxUmOjgsZgLV9dZS3aeYOyH9YzrZ+Eq8kUKrg28gqom+8cXFyCZ3JaX7ae+glGCSG+9tIoV3DtKM0KNEunOeVCybWCaX3ZWLu+hM9ZM4W8BKdKMoUKrhK3xk7OhqRF+VKl1ZIb0NijmkyYPW1daZQuuNWo2F3o75BcqHstX1pfNtauLxF09mUQug1uI4pCBdceXl4Buwvh3N5psJBQK+jMpg12ztr1JYLOUd0KscmUKzgwkUBwwBQIDpgCwQFTIDhgCgQHTIHgXKqsn+TY54/CvpnpFZxv12MUXHJOCM4OCK5LYDIjE1z12bvhlefte+FMoypu3UKUz1i13qOnHQZHkNPKZ1+g0EC7elRUFsYnuIqTGj1EGZ0SCankroQRYmuxafWeQttyVC7GJzj5HDSy4aw96s4FO0xouznTr5qcWRrIzlQIrg69YLElnM5pKk1R5QhyBvpVkzNLA9mZFsHJnnqHqKK5MtCvmpxZGsjOVAguaGRLyFGr4yi7Co4gRAUT9t1AXiZNcDX3ktc2OpZgCerWWKp8gvPV0iSks/hSUYeoqCyMTHBg7EBwwBQIDpgCwQFTIDhgCgQHTIHgUqhC73foozJCt60s3XdjbSC4TuhvqsYhYzNRFSG40QDBxTJKwVWfvdFftd7rd7bWVKRRPgdawnduN9BOyHbiy6PpOdinL79jkUv7zn0wVsFVnNR8+xU8a8+K5fvhy8Pa2U66GH1QB/1mlCW6M1bByeeom+fbcrX2yYxNFZVT316wN1/DDlFVomolM72CayNUoV+DhWqF4NjqbD9yk2x+2oBcRV+iO9MrOGUV+lWTk83PRgmlNUbBIaEfzVo6AsFJW04r5MuZ0J6yT9YhoUqwRHcmU3C154XDSeI4JBRqZxBqadrTG309U7uvNyGhvJDujFJwYLxAcMAUCA6YAsEBUyA4YAoEB0wpSHCV+qd9MF7KEhzVFmscHRMwQi4gOAsmYIRclCW4mnvXu1K8S051ST3bbkFnmlZfgg2s/N8wOC3Rh2xvvrOyT80gylVHMSbB0Us1ubWyJw1RplWW0DjTkTXlspRm29CX8DUWRXGCaw7ybAkL9XnqN54lG9ubfWk2SnYIrlrDyATXTiVvIc1T4yxECc7yyMK8CQ6+AYM9OHblTqIYk+DYgTsaa8/ugs6+jed1Th4kOJTeGKwbRYmCCw68mirZs20MZkh28Dm30U+kLM0OyzorS2gai2JMgmvPH9wC9fQZG7uyASHK50zdlBMJVXw9C85sA3IJX2NCNpmCBGdJ8r76o3tLBQ5FmSLBVTn+A81L3pYKGUpmigRXK15c7MnYUlFz+ZguwYHBgeCAKRAcMKUswVVJ34Xoo9Lyd8G+Yhb6a3usgqsK+5HT10MJvSmxaRWCywMEp6QIwa1eqomMGjvr31xqYh1nmoGG0MzKVI6z0CpN6DtrKrKpnG3IDmwD7EqDCxH69zG84CpuU1XoljgONJDNwNZy0ipTCQ0nJ/RVkY3yAhOWow/3rVGgIMEFhw9GBTOwVzVp9XWj/DVRcqqOe8hoVDLJgmsj5FemdVJpmgz2qYmSU2n2YGNUMsmCE6J8a4pqRrN32V8T1bE3M6OSqRAcNfrWtNqkEBWsq+xTCAk2HzT6ek5IFVyjMAXL8IJr+na6pxYaIiyFzcCGOGlrbo+NRa6lHE3uwde8PJHvLE/krJHuJzivPAWlCMGVQ+z6yq/VdxUIrhMQXGxOCK4TZiIwU3ZPhZobGhsIwQFTIDhgCgQHTBmx4KqJ+wY/tpZlV7kYmeCqDj8fdallCQQHwZkCwZUiuCZJ87Dm3mJw3IJ52FRsLcHTSRUb5bSnnEvpoFxRcG9ZGJPgav+nSfRQe54AWAd9KsczV5TToT5txrnYVNkZt+DoObg4fVRU/o5RwQ5ZB/ZqVDP6ormYQMG1UWboaOwepZzRmcsJlx18UTSWdcjFBAouIUNHY/eojB1GRcmd9MEkCy7qdtIMUfk7Rmk6FFqNddB3mJ3xCS64o6aWnISGUyOtJRSl+aOihHCnHzZt0CG4ouDesjAywfVE31sGDRBcXUNwhkBwdQ3BGQLBAVMgOGAKBAdMgeC8VP18Y2eZtqdaXYDg1lCF3iTLW6L8tNmB4NYAwfVNcYJrPGVjRd5S10T5jOylpkSWuk4G9szWomday2mJ7TOqqDCgrxMlZQmOHcxnDDoojUIDNDCtLlvC55mWSu4w42I7Upbg2rBjs/MHt8l6ykU1aaMcHKNzSU7razuhw+79d6Q4wbWdhbGDi2unYvP7qstnNr/TLTUGG/BFVT0LLrhteV0JlCW4KrRB2VPjrDcGm9GnZR2Cqer+BafvPziXkkIFt+pMR1WuNTZKTtW9LlsimEpIktaA8DC2q2TKElzdkpozbWNn56cOUUZanTbQsS7buTwjW5FtONi2L1XCYuV+ghQnOODQ8QaXBgRXOhAcBGfE6saG7iIzEBwwBYIDpkBwwBQIDpgCwQFTIDhgCgQHTIHggCkQHDAFggOmQHDAFAgukdVxys9ZGhBcHFXr185GJLhydAzBRdCfIHrN33fbUYxecO3kjrHmdi34t41BSzBDchtRM3YfxJhxC47usX2uyM3WnGvuN7+7nNk2gvllB71RP7UNkyy4tLOTvL8Scn52RnlwJ5vgTH3MmEbBtaE+jiWthHzW5GdnVA7uqyX4mDGNgpPzdEyb6+zrTRPVbDuYgd1Gr0yy4KoO38NFhfRxlpvRGzVntm5PjFtwdehFhK5S9mfdNJmDaQV/n48mucbIdqKp2wejFxyL5QYnAwiuExBcFJa7guCAKZMpOFAsEBwwBYIDpkBwwBQIDpgCwQFTIDhgCgQHTIHggCkQHDAFggOmTJ3gmk6y59Tbp5npElxPCoDg9EBwPaaF4ChTJLh2G/Qha6kVv7VL7WysnD/ZKNjLZIoEV4fUE3Rjz81o+nJObLJRnqhMIDjGweemOWvKNWenltODPhVbvUwgOOaqz01z1pSjZycDNdJNCs4lA8EFLsWeNeWof7Mfn9FXQs5QIBBc4FJzbkaQ7ZpyTmyyUeNcGhCce7WBRintbDknfy4ja/f1UwLTJbjpAYKD4OwoVm01BAeMgeCAKRAcMAWCA6ZAcMAUCA6YAsEBUyA4YAoEB0yB4IApEBwwBYIDpkBwk8DqbofuQsXkC24sd6ILEFwpghvRnZgSShdcO7ZtoWfq7Itlo9pXaWY5ljpryvnOCaU1XeUdLZmiBdeetjmzxu7Olag5zVnTfFQbXfJ0zK+cMYHRCI410rPjLzvnPSv7bLdKjcOeNc13ZHIEV3M3Mu9Zzs/2SUN8gV1Kd/ePar4LEyW4trHq7bUp2KHykuPQpXR2f6H5joxGcM3ZOVAH1tngrGk+eLZvO2pv3SlacHXrNrRnbh6ydp+z3oGeNbGxzfvONGdUnrz+8oAJlC646SH7rS0TCK4UIDgIzhQIDoID+YHggCkQHDAFggOmQHDAFAgOmALBAVMgOGCKteC2bds2B6aYbdu2mQoOAAAAAAAAAAAAYLz8P1C/OC/+DMA7AAAAAElFTkSuQmCC" /></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-47975837621216339712011-12-05T07:07:00.000-08:002011-12-06T07:11:56.994-08:00What the C-suite Needs to Know about Fraud: Elevator Pitch #2<div dir="ltr" style="text-align: left;" trbidi="on">
<img alt="" src="data:image/png;base64,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" /></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-59926305980161242812011-11-19T10:40:00.000-08:002011-12-06T07:12:25.024-08:00What the C-suite Needs to Know about Fraud: Elevator Pitches<div dir="ltr" style="text-align: left;" trbidi="on">
Over the coming weeks, I'll be using this blog to suggest a set of "elevator pitches" relating to bank fraud management. This episode gives some background, as well as Pitch #1.<br />
<br />
<a href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAALMAAAGvCAIAAACfFXPwAAAWoElEQVR4nO2dPW9cR5aG9VucbeZfML9gss0WcLKJMwObO1kssMFGkxgTbjLJAIsJ7AUEzdKCSJlNtSiJFiHJHn+MLC5hfVi0RInickm3zwTtaV/deuvUqY97b93b7wNC6K6uOnWq6um63UV265IQgrg0dAIDsFgsnjx+ur93bz7bnc92r/z3/1z++MrG5U+Xd+/vPzh6fjR0jsOzXmY8efz089t3Ny5/eufm3uHB4dHzo6PnR4vFQkTOzy+Wdx89PJjPdjcuf7q/d+/45auhUx6MdTHj6PnRzvX5nZt73x8+Xqqgc35+cXhwuL05u3Nzbz39mL4Z5+cXt27cns92X/z4IqH5k8dPtzdn9/cfWHyaEhM34+T1yc71+bOnP2TGWV5izs8vimQ1CqZsxvIKcvL6BD7688tnFw9unO98cvan35198vuLBzd++vqOEu3Fjy+2N2enb067SbY6JmvGix9f7Fyfu8/yn18+O/vjf5x8+Nvj995xf169/+7pRx/8/9Z/wZinb07ns901kWOaZpy+Od25Pj87O2sW/vzm+OxPvzv+53+ATrR+Tj787cWDG27k45ev1uSyMkEzFovFzvV56w3FT9/df/0vv7E40fw5+8O/ufGfPf3h1o3bfY1mMCZoxhf3vnz47XfNkvOdT4xbhfvz5t//6ec3x8EupsfUzDh5fbK9OWu+w7y4u5nmRFMOOX/rwnR2dnZtY2va72OnZsadm3tPHj9d3f3pu/uv3n8304zj9975v//8sNXRt1/99S9ffNXv4HplUmYcv3y1vTlrlvjegyT8nN/6czPyYrHYuPzphLeNSZnxly+++varv67unt/6cyktlu9WWt19fvvu94eP+x1if0zKjK2rnzXPtU7+9R8LmuFuG98fPv789t3eR9kT0zHj5PXJ1tXPVncXP/xvWS2O33vn9KMPmj1O+4IyHTMePTy4v/9gdffsk98XN+PV+++23qTsXJ+n/aKufqZjxtdffvP1l9+s7p5+9EFxM47fe2fx/TfNTltvhabEdMzY37t3eHC4ulv8Rcby5+LuZrPT+/sPHj086H2sfTAdM1pP34SzcMtP65dtrY1qSkzHjFs3bjf/DoNmZDIdM3g1Kct0zBjkFeiED7umY8Yg71rns92pfgRhOmYs/4hrdbefk66rV65N9a94pmOGiFzb2Gr+KV7Xp+PT/hOeSZnRej3Y9W/UWq95J8akzDh6fjSf7TZLOv0t/IQvJTIxM8Q51ejuL3cefvvdF/e+7HdwvTI1M9w/3unir/0Wi8W1ja3W36ZPjKmZIei3XMX/QnjyG4ZM0oyzs7Od6/PW54UKfqrgxY8v5rPdqf5ZxooJmiEixy9f7VyftxavyCeR4GecJsk0zRCRJ4+f3rm55z6zcz69eH5+MZ/trsmXJkzWDBE5PDhUPmkY+4nn5SdZ1kQLmbYZ8vcPsOcv5/Jj9WvyWeclEzdDRE7fnG5vzvb37qWt6/HLV3du7q3Jp5ybTN+MJYcHh1tXP7u//8C+fxw9P7pzc297czbVv/TUWRczRGSxWDx6eLC9Obu2sXV//8Gzpz+4lhw9P1p+7d/VK9fms931dGLJGpmx4vTN6aOHB7du3N7enF3++ErzZz7bXX7t3zq8L9VZRzNcLn98ZegUqoNmiNAMBM0QoRkImiFCMxA0Q4RmIGiGCM1A0AwRmoGgGSI0A0EzRGgGgmaI0AwEzRChGQiaIUIzEDRDhGYgaIYIzUDQDBGagaAZIjQDQTNEaAaCZojQDATNEKEZCJohQjMQNEOEZiBohgjNQNAMEZqBoBkiNANBM0RoBoJmiNAMBM0QoRkImiFCMxA0Q4RmIGiGCM1A0AwRmoGgGSI0A0EzRGgGgmaI0AwEzRChGQiaIUIzEDRDhGYgaIYIzUDQDBGagaAZIjQDQTNEaAaCZojQDATNEKEZCJohQjMQNEOEZiBohgjNQNAMEZqBoBkiNANBM0RoBoJmiIhc29gaOoXq+NUM97+O4s86/GxvzgJmXOaOupb41p1mrDs0g2BoBsHQDIKhGQRDMwiGZhAMzSAYmkEwNINgaAbB0AyCoRkEQzMIhmYQTLoZl/6O5dFgTd9dX1iIMYgODGiJrDfJiRY7e/r8GCengBluN1HZRC2qZeTBILHBlWwtD/lmyfJQVDVlCG40PAUNRmaG0tD4kB7NN5bkTleFxomC0YzV9PSi6gjNiI1GM6xmKMmNyIzuOrWYAR+Fs6dXMw6EZgxvRnBoyhT5HtJj0oy4mDmhYE0FJWxvZuiJGQdLM1I6TV4Ay7rqty0PJSTmUsAMMdhgX8XYRTLm5k6QMVRap26/lkUyzp7xoYQhNKEZ4U5zBhJlhhhmUqkWHIi9jqyDGUZ8TezpJYwXVnMdMlbT+42qI6XMWN5d/eur4BteQt56zWQzYDI0463m4Roop6AZEDesXic4QuPgYStLenqnwd6DNVtdG6spQ3CjBWe4PzNgWspojTUtuUWR32mwd0tNdy2D1aQSM8i0oRkEQzMIhmYQDM0gGJpBMDSDYGgGwYzMjOAZlHKMYzkFMvYFO1UqWCJbUuoTmpFohjGOYkBCtD4ZkxmtNbbUzK+grLfdA72hvbBPaEZKX0pzqELztj0azbBSiRlRC9aKU6EBPkZjhvJcDFaOraD3lWOGXq0qP2hGdF8JZlgW3l6zH8ZhBpwsZQZzzAj2lWOGpWElfozJDIhSPxgwra8EM1qRE9r2D82I7ksP3npUv2vJRBlFp4zAjIS5SzbD2Je9ebCEZqRTrRlwyY1muHJYovVJ7WakrXEPrS55sHcUDDWgFkIzMlsFV9H3kNuqHieW1G4GGQqaQTA0g2BoBsHQDIKhGQRDMwiGZhAMzSAYmkEwNINgaAbB0AyCoRkEQzMIhmYQDM0gGJpBMDSDYGgGwdAMgqEZBEMzCIZmEAzNIBiaQTA0g2BoBsHQDIKhGQRDMwiGZhAMzSAYmkEwNINgaAbB0AyCoRkEQzMIhmYQDM0gmDJm+L4ZOee7cMt+lW4N38rbER0NrfCe4X75clpaxUcb/Nrost1NAJrRSXcToA8zlK9/t3xbe+vCBL/LXUnAva658X1fDu8OJJh82Qi+EcEh+2Y77eLeuRmtvPXbvgp6kGDkHiIoyedEsDwH9C58oYL0dzXJMUPvK6qXqO7sa+mjyBPDmFvZzAczo4kex7edppnRjGDPzZeDm7kxybThr4UZ9jjJT2j7UzPqSRwsz18hmgGaGCsn7xlpbiULVzBCMLfgoyMwQ0IbcrChWwcGhOW+Er2CPXmYZH6EYG6KQzCUDk/HaydqOQuGohk1Erzc9BCKZlRK8HLTdSiaQTA0g2BoBsGMzAx4sSz46r1/ekg+rYuRmbGi4Kv3YUlLPqoVzRgla2TG6rjNXbzmaZ3vfZRykNcK3jr7U96YBWMGC41DiC0UZ9l8R5yt8bp17F0Y6cSM1pr5CgUlbTHDfQiWW2JGpaoPIaEQSmDJx9IKdmGnqz2jdTs4EjeC+29mQOPtqMq+hgW7SIsQnJMgNCMl1Utvo3et14wK6yu0d2GHZqSkGuwlP5+0JO1hg/T3OqNZAd5uBdFvd2pGmiWZhWUjVGqGvD2/bnKtrc8XRLkdu3O6+60S2c3fOISEwmDl4PBjuzDS7dVkjIw9/1LQjDZjz78UNKPN2PMvxVhPx0nX0AyCoRkEM3oz4MsC+2uFzFcVg7wo6afTaZpRvEnB5vnQDBM0oyOqMCPqNNBeCOO4d6PSiGoOcwuO3ddqVbIuZsAV9RW6FXyFCcG7KIQVgmPXR7SOZsDCnHVKC67nmZlbwfidMrwZEvNrpLTC2OAwt47MyInfKVWY8WuvHeztRZoUzK1g/E4Z3ozMy7b9apJ5VerUDO4ZGHfDh4XL27GXBhjHWLNZ2bKKltzg2JXk3fhrZIaRfmaELKEZBEMzCGZMZpA+oRkEQzMIZppmJLwiKfsiptR7S/0UpFNoRsm2pSK4ofp/9U0zSrYtFcENtUZmJJ97JhyM2o9NW5Xth5it9NzKxoHEZtUdw5ihzIJb6LutFyoxpTHjxjTEsx7BCM1HjTlHDaQ7hjcDFtrXKW1CjWbAmlE56zXzB9Id0zejiZLD6MyAgyrI9M1QEuCeoTC8GcapUSoo85h/NYEl9oHoNYOprp0Z4tkM3ULjhOqtLDGham59y0DSzGiG0rOauBml6GGa+lmJ2qAZVXRRITQjEHw9tZAJmEE6gmYQDM0gmCHftXYRdsCO8vu6hPCF7XpcNAPXTEuv1KCiDlQ6gmbgmjSjJzN8B4X2Y9DM5sGUWru3GyS2r2BzBWiG3ldUfAt9mAHH01qVhJr25vaU9Ar2viyhFKCCsX1l0rcZsFCvkLAwvkI9PeNOE8wZPuOjUCLoZhSkOjMuNVBqKruL0ryVgKUjS2W3mrHcR5QZCfEt1GVGF9tDZu9pfQW3HJ1YM2LjWxjydYZSmLxn6IXwUbsZ9qwskilEmZEQ38LA703g7UtvX61jn99KR25K4l94PauEQdmXMHbPcOPnw9NxgqEZBEMzCIZmEAzNIBiaQTBTMKPsu7WqCB6ddccUzJgwNINg1tEMeP7onv2lnYdawipz7TuyjG0VNQqlX0vb4gz86cXV7Wa5eyPKjFiN3MRgK/3pGzwjT0tsTc3Qb2cWWirbk0zzKTZhpaayL3ZELWY0gRViC31hm+VKbpZkfE2SzVD6XV8zjBWS94xgDgn9BkNFRdMLaUaB1xnGsBJa49g9I9ivXQLdDF8OZanCDPHs8KsS45YbFVaZXLdfy1bkC2schd7vGpkRRQ8T0QMFR0EzfoFmdBfKB83ojyKj0K+DBRmHGaR/aAbB0AyCqcuM4FFBQvOCTOPljpERmFG8SXJzmiE0o4u+xkV5M4zHjqvDPmMhjKMfhgbT8J1CwlaiXuyUmPbhZ9b0FaZR2Ay4or5Ct4KvMCF4TqGvd58Zaf3aB5gzFcl0aAYszFm8tOB6nnYzohLIT9teGMwkjT6uJmWf1rHBYW568OA20IqpR0hL2+Kur5dWeRodvgLNl8AtLNIk2DzYKqpCWtoJGebb0KS61xlK81KGWbaEfHWKDz+tMJka35u0blu2UEvNZmW4QsHkg2ZkDl+pGTXAIorU8pc760b9w6cZw1D/8GnGMNQ//LpOx0k90AyCoRkE09+3PhZpUvbyXP/FPoqyw6nXjE7jdBFt8L5oRjFohkLfZiSf/bXOLmGTZnyYQ7AL/ZgSHoPaGwaTjw3bymr0ZrQsEWeFlBt6E/Esnr0LpTtL17FjFM9yJoTVPUtgmD1DKUxoEpzoYJDkLuwNLUnqmZcNG6QKM0Td6pUnkNLKTcCtr0cz2mBs2ErMzVxJ2Bh2mmYoNe3bTGy5Hi12z9ArpCXmi7AuZuiFUTNiWYCCXeQvYVDZtTZD1KtJ81G9iaizY+zC96ivC2NDS/JuWImZulGaQUYHzSAYmkEwNINgaAbB0AyC6dyMsm+lykYbEfrA06ZFbzUCMzo6zJmSZDSDZmDqMsN+9reqbGmuV4PR3LPCYHewd8uhZGy/eoTWo8ptPdXg8aibhjhT3SLRDEUCt9CtEKyp9AWjBSMbC8UzX/ahRUWwVHD9U8YSHFRwtlcUMMMtt+fnK/T1VXCNgzV9pPULI8By919fp7ChnpI9z8HMaGKJqUdrFrqRW+WwO7eJm4YSwdevHgGONM0MN2xwkis1IzamMVowcpSImf0GI8A6aWYYe+nVDFfVYM3kpYpaITit9lYwh7IRlGrBscDC/GfRipLvTWB/vi3ULVTMiFJK6U78K+Qbjh4h2K8eAdax3FamLjgo34q06OSbVaLqkzqhGQRT0ozgBkVGBH/XSjA0g2BoBsEMY0bOyxHLO66xA0enn14UZ2R7hv2gxhKhWvQkg2dIRRiTGUVmhGYY6cSM1UmfcuDYuiGG4aUdHbppWM4TleT1VjCx5Gj6pDWrpU2pQldmwIlQsreMIdaMKBd9CVuSF7TepaJF3VBux9LhnqHc7t+MnNwsFXy55UeLNUNiplRheDPcu5aw9h59e7IlN+UJrezhxsSSC9fFjJw9I7ic9pppFfROk7ujGb/eTtg2Ck56foWqzFDysTOwGVGzvHq0dYFolbdiwhK9guW20qqVVVo0pQt4A24bOYzpPIPYoRkEQzNIG3ipTYBmEAzNIBiaQTAjMyN4Bc2/xBrfPGcGLxWtiySXTMEMy7lCZhfFqT9PmmHqojj15zmkGb5jPniit3pID6JHUGbT7QJeViwnoa2jSd8Ag/H1YXZ6KZFK/r9WeMprOQOGoexLG5uApdDYSrEtOEClZkGquJokrAFsXjaCshnkd+Ruab4mlr66oIqrSQ9muH0FIwTN0PNv1tGDw/hR6XVBdVcTY2EwlC9CTjJRmcBymhEm4dosJcxI2zP0u8GOgmb4ErOnV5zhryZim1n9WmCPoCejXxp8TXx19KtJMH5UX8Wp4hUoke5XOhaaUQs0g7TRL3NDQTMIhmYQDM0gmOr+r4Ker7iWk4aOeqyc6swYik7N6GESindBM36BZrToygz3fHNVqB8hBw8u7YW+LmB3QTOM/a7Cto47fR3ph6HB2VDSyHwz3O2nF+GMiGcZfEuVVghLks2ISkaPaZ8c+xgtEWLp73Ot/ayQko/7b1q/9mTShF5HM5q0KthXyBdE2TynYQYcuD1CLMPsGW7lnBUKVpiGGW4CwWQsDX0MfzWJqp+20yp1EswolWGyGSPeM+Tt3c8tdCv7brv17YXGLnw3fCPSC33B9Y58YS2z53YRrGyBp+MEQzMIhmYQDM0gGJpBMDSDYKozw/5GK+ctWSzBI4Syj0bR0TzQjLi+KkmvyFmWDs2I66uS9MZqhv1kcFXZV9N37Gip6cut1Wlsqr7TTF8cvRC29Q0TDlaPkOxNt/+Tr3vbXc5WTfuE6jWV9PQgloW0JJMzEJ+1cJj2UUQxsBnubeOEBgvT0us0q4IjShtFFJ2Y0aT1kO9u5hr4eoTpGRPIz6pV2LMZ9jmB9Pf/wvezZ0SlN20z3FZRjPV1RrAwLb1gofIEVWoqd4Pd5ZtRy54hja0MJtfKXq/pTg3cJH01YW6W262AFgmUgSh39RyUURgjpGkhg3+zSkeR+4kf1VFyMr2NogXN6KmjqGTyrwX5TNmM3tAHkralZ14L8qnudJxUAs0gGJpBMGtnRvA1QXfBS9HP64+RmZE2I/ZW9b9d6u01Kc0oEL+LTLqLYKQKM+AZojjv3CxHn24o32mm0jwtPTe4ngkscbvWI3RHLWa4KwdnXF+G/FA+M9JiGlsp/Roz7IJazHBvJ5thb6XX7C09HzQjfeqbxIZqRXAfzU9Pr9BMwO3UGKE7xm1G8VA9m5E5lk6pxYy0C7mxgl5o2TM6TU/pV4/QKbWYIW8vwKq8VQjvWtbDtzarrt1H09KzZwIjuF0rXXRKRWZUS+XpdQTNCFN5eh1BM8JUnl5HVGEGqRCaQTA0g2BoRmEm86KEZhAMzSCY8ZkBzw19Z4Wt00+9QrMwM2xUqnUyMjN8R86wUD8dtxfGho1NtU5GbAYsDK5B2solVLCnWic0o0ArpYJ7rWniG2YN0IwCrXwVjI/WyYjNyF9j44uDtAp8ndE3cCuG+7Z++5L/vUl+2ORU62F8ZpSizvWoB5pBMDSDYNbXDKJDMwiGZhAMzSAYmkEwNINgrm1swXKaQTA0g2B+MWM+27388RX+rOHPfLYLzfgbSnrH9rS3rEEAAAAASUVORK5CYII=" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img alt="" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAANAAAAHQCAIAAABfsXOXAAAZKklEQVR4nO2dXYxd1XXHz9O8mJd5wS/Ng+2HkAesqK2UDwmIQixVbSOqpn2qaElCZdLSVKlosJoUOUIiIlUiqwIHxw24kY1c404ngz22C5YJVqkT6EdU6iSVKoJxQwBPsI09ndgdTh9ufLxn77XXXvvjrPNx/z+NRueus/Z/rbX3n3tn7syYqgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACU2bhh02f/+E937dy9a+fu+acWjiwcO7JwbPLwoQe/vOX2LevW3dB1j2D4rL9x/f33bTu4f25x4cgr//3jpXNLS+eWVlZW6rqu63ry8CdnX3/h5KnD84uP7Hh0y+1bum4ZDJPZ2dkHvrD90Pziq6+cWb68XAt48423Xjh56uD+udtu+UjX7YNB8em77l6YO3T2zFmJzyyWLy8/f+Lk3j371t+4vus5QO+ZmZl5+KGvfO/Ui6urqwlua7hw/uL8wW9vvnlz1wOBHjM7O/vNbzzx6itnaBNdWbl6+tTV739nZW7HytyOKy/949XTp969fMHnuStXrh49dOyOj9/R9Vigl6xbd8PePU++/bO3XZ/9/Pi+5R1bL3zqfRfu3Oh+XPrSJ1aOPk46b3V19bnjz8NzgGDnX3/97Gv/Y5vtn59+53O3kj6zPi5uff/K0cdJzx09dAyvrWANf/5nnz/98g9Mo7x7+cLyjq0Sq1nPdu+ef9N9bZ0/+G18DwF+wYc++OETzzy35mnprdcuffE3Y932i6e6ez/wfz/+T8tzb//s7Sd2/23Xg4J+sHfPvgvnL5rPbe98fkua25qX19W3XrM8d+KZ5z70wQ93PSvomo99dMuJZ42ntysrl//qrhy3TT7e+dyt1rcRF85f/Nbje2dmZrqeGHTKwf1z5g8SVo4+nu+2ycfK3getJ7kXTp7Cz76mmpvee9ORp4+ZT28X7/1AKcNd+NT7rC/m3nzjrUd2PNr10KA7PrP1j350+r+uP709/fVibrtz44U7Ny4/+tk134usrj49dxi/VzK9WK+nl770ibKGu7j1/fWVFbyqgqqqqvU3rj80v3j9m9Pzb5Z12+Tj6ulTpuFefeXM/fdt63p00AUbN2xaXDjSWOHq97/ThuFW5naYhvvp62989eGvdT066IJf+eVfffbo8cYKPz++rw3D/e8TXzQNh3eAp5ctt2954eT117uVuR1tGG55x1bTcMuXlw/un+t6dNAFMBxQxfoRKl5SQbtY7/rqfNOA936nl07eFjl75uwDX9je9eigI+afWmj+5q9WeeP3xVMv/fqv/UbXc4OOuP++beZfMLT9o626rg/9w+Ls7GzXc4OO2Hzz5mOLz1y3Q8s/vF86t7Rr5+6uhwadYr2qtvrrSXg9BdXv/PbvvvTdfzGf5Fr6BcyVlZW5A/P4BcxpZ2Zm5sCTB83fGWnpV8xP/dN37/j4b3U9LugBCn9Ec+H8xb179nU9KOgNDz/0FesP7gv+meDq6uqh+cWNGzZ1PSXoDTMzM9/8xhPun93n/yF0XdfPHj1+6y23dT0i6Bmzs7N//3dzxL/MlfFPPdR1/b1TL376rru7Hg70ko0bNh148qmlc0ukdWL/MZvV1dUTzz5372f+pOuxQI9Zt+6Gxx7Z9cPTP/LZSMjKysrhhSMf+yj+fAGEmJmZ+cu/eGBx4Yj3qY7lypWr//rSv80dmL/pvTd1PQoYDhs3bNq1c/exxWd++vobQqstX17+j39/ef7gwu//3h/gDV6QwuabN3/14a8dnj/y/ImTPzn7+tK5Jetfxrz0zqWlc0s/ePmHh+YXD+6fu/uTf4g/OwW5zMzM3HbLRx568Mu7du4+PH9k8m/mTz727z2wa+fuu+785Ht+6T1dtwnGy5GFY123AKYJGA6oAsMBVWA4oAoMB1SB4YAqMBxQBYYDqsBwQBUYDqgCwwFVYDigCgwHVIHhgCowHFAFhgOqwHBAFRgOqALDAVVgOKAKDAdUgeGAKjAcUAWGA6rAcEAVGA6oAsMBVWA4oAoMB1SB4YAqMBxQBYYDqsBwQBUYDqgCwwFVYDigCgwHVIHhgCowHFAFhgOqwHBAFRgOqALDAVVgOKAKDAdUgeGAKjAcUAWGA6rAcECVPX/zra5bmBoee+yx7QBc45577mnXcNu3b68BuMb27dthOKAHDAdUgeGAKjAcUAWGA6rAcEAVGA6oAsMBVWA4oAoMB1SB4YAqMBxQBYYDqsBwQBUYDqjSC8M1yZK7wUzfQ58siVCEhxSUKPNLctRid4/fn4TN6Zfh3O6jhrRu8dvBty0UiRVnupXc8u2S5FZUGjOCq0ZvgYfpNRyzUHiLV/PNkly0CQo3ilQTpvHtReVYwHBxmgXVYos2QeFGMUWDaXx7UTkWPTIcM7MZZ4ZM2LJYzRypzKK+XQreJXePTxMOErs5NQwXq5kjlVM0OBqzRb5bvKZkkNjNqWG4WM0cKTKTgZHlE5hkYRrfXsKwDTBcnGaOFJnJwGvyOb4dE6bx7SUM29Avw9UCkzFDJm+HUNMaLVYqrahbl+yBecjsnvBWwgg+YLgITWu0WKnMQUiYusGdZNKCg8hzLGC4OM0cNXl7CfOSaeZBRKXxdaNyLHpnuMnD5rMvwbdradvBZCbsaTM7HxQWzUkzDyIqja8blWPRU8PxwzPlXFk+J7hxzK3gRJL2+KLB6sFMq7QwjRnBVZPscMMgDUdOy2yiMFPSWxT5RYPVJZnmLfmk/LHyOUzDvTAcmB5gOKAKDAdUgeGAKjAcUAWGA6rAcEAVGA6oMr2GazpkbpFIEuS1yKJMgkRZ0lJXwHDdG06o4wbJTHlXnTClhmvOIHgYBRPITJ8h3KAVIRfKg10BwwVOomACmckst26ZD5vtFaoFm1QDhgucRMEENzPKB5YOuTBKsBOm0XDWqfCHFDzCqOVRpX1SkopyWWVguIEZrqFIpj5TZzjyDJiDEZ5uWq0oQ7h7G7VEWKVtptRwJEx+UDCtVlDcV4jvOWEKNWC46zD5QcG0Wry4dZd/KOmEmUKN6TJcwpEEjyphoXlLvjwYSZhOHxgucCt4VAkLzVvNRrkJZJBPk6t1xRQZLrjpZILCKt/WyQsFpfhmNIHhAglqq4Lm8N1yV1lHwLShzxQZDvQBGA6oAsMBVWA4oAoMB1SB4YAqMBxQBYYDqsBwQBUYDqgCwwFVYDigCgwHVIHhgCowHFAFhgOqwHBAFRgOqALDAVVgOKAKDAdUgeGAKjAcUAWGA6rAcEAVGA6oAsMBVWA4oAoMB1SB4YAqMBxQBYYDqsBwQBUYDqgCwwFVYDigCgwHVIHhgCowHFAFhgOqwHBAlX4Zzl1ecNSyar1iQKP1znDtjcqLD+jMBg0Mp1EaNAzDcJN45fw/88iFFfU/TXNzTAVSkCzBLHF7LqLgm4gcucmXbILbmLsqqmEJvTOciRU3d8G6JoO1s1mtKliDlFJwt4JpnizhkzJ1fI3JGxbSO8OlxYNH4ktOWxW141FNyvshldM6j6rlExEySMOZ+m6C8Npc7rvrK0EquD3zTboJvpGD1/w++Jan1fKJCBme4aL2VL7XUacSjKcdfFAhqAzDtWi4iT6TwCwUBqMSyIZjm+QVgr0F7/pqpe1kAsMzXG1skLULDW6yFfdF+ARSlpnFajJfIdibr2GflJlJbl1UwxL6ZThAknnGQamC+kFguJ5SFXoJk0jBcKCuC72ESaRgODBaYDigCgwHVJkKw1XlvuguSFBWXje2QzK/pTEtYLjO6NBw5EIYrhgwnGQhDEfTKJuRJu5m1v6tJBN8+sVr8UWDtXwd+nq2NF0dX7myDMxw5D66u+a7S0qRy0mplmqRRaOS3aKMZtRoxRmY4UzkZ8CbIFmqVK2gflCWuet+ji1dluEZzhRvIuZdJmjpCFcFTyWzluTUrWtmB6wl7ufY0mUZmOHyXVJQqlQtyanLO7TuwnBZmDuV5pKCUuT5JdSSnDpfiywapcZcl2VghquNjZbsWoNQylzl02Rq1ezZ8227ffr656WsTP7aFPcll2V4hmuDgvsblGrvLAfB9BquKvcfdFCqYK2hM72Gqz0vZC1JFaw1aKbacEAfGA6oAsMBVWC4Lqna/5JOoUQUMFyXpLkhahUMB64Dw43TcJXnTfba+WEUHzQjVk5CUKhp9eOmyUv0gak2XLXWfJIgoxYbJGu51+RCYTNW531gqg2XEBTmFKmbnOxL6AMwXFywXvsz9aDh+Ewz6GYKmxSW6AkwXFzQfZgT9JVI6Dy4qifAcHbQTWAMl2nfoIfSkmG47jFbaiLmXfPCTKupM7OkkoNWFTKTbFKykIx3zrQYTkjfjmd8wHBrgOHaBoZbAwzXNjAcUAWGA6rAcECVERquEr8HK1+eWb1tChbN3L0g02K44ksKLs+nDcO1NBQMl7ik4PJ8YLhcwzXL+WDl/8EAGSR13IdRbUQtJ3sLzu5b1URINXcVvyfuKnKoTPpoOGYj3KCb4AsmiLcR5E8xakz3riUlVPDJkl1l0nfDkUHhlpHBNHG+z8zeCuqTy9M6nCLD1f6XFes6ORgrTvaW30ZxfUtHPqAbdO+6+5ZATw1njUrOnxwssqRgbwX1g1Jy2aB+Gn00XNTuCHeqlDn40mmaJpn6pFTygLx+Gn00XO159naDlfFUbwWtayvoLhFmmsmVwByS3sjZmeZdfVJKUtdVCA6VSU8NJ6TgRgAdYDigCgwHVBm24cDggOGAKjAcUGXwhqu0voxTK5RfizwIn6zmXDUM10ahSvBmW6laUTrK3iKB4coXguEYBma4RtaM1GvfFo/KjF0ebMl8SIrE1gouZ3ALucPm6CcwJMOR22RukHshyZQvl7fEJ8hrSaQYKsdwTIkE/QSGajgyyCcknLcvyLcnOTletqK+xk8wAaPAG649Rms4swcm0xfkl1sNSApJkt00YdyHW929JjdNqJ/AOA1XMFiqelot39kLPRFruFj9BIZqOKFjJj0kL/cFybtyw8m7CkrxVDGGS9BPYEiGq6nnfOa6WvuVEL/d5HLJGZCFyGsyOWEoSVfkXckOWPrFGZjhwNCB4YAqMBxQBYYDqsBwQBUYDqgCw12nUvnZTidU1JsgnQDDTQUwHFAFhitGRb3LXznvsLtplgIZlMgyR+gmNLJRq6KmYOpK1rbNGAzHb2K11jSSzIRksjFyFanAr8qZInjh66QlxmA4/jozKEmWNxk85uQeeDVmiabb6vEZzoRMiA36ZM0405ukGd8Sph95w8ElTP9tMDbDCRNiz0/eQ0LdoFSUGh+E4XIJusS8yDdcgnWCdWPHEU5BZlpFyR5aZVSGqz0vc03EOiErmTy/oGzlPzO3LlMiKCucgq/rjuBrviUGb7go9Pe3DQpOAcO1CwzXnpQQGG54FJlicjr5OrFMl+FA58BwQBUYDqgyTsNVMe+p5mSm0bZ+n5kiwxVfkrwchoPhYDgl+mu4RoEPVtfeUhcGSR33YVQbZFe+VTX7is9oysfPzPQFi9BTw7k7xQTdBF8wQTwn6KtOHiTZc/L4mZnkLEUYgOHIYNrZ5IjzffoOSX6KUQoJtTI1S9FTw9X+FwXrOjkYK072xoszCaQmr5DWdrABpooVL0J/DdeQsI/BYJElweXBVVEJaW0ndFjcZCY9NVzUProJ/PLMQ+JLR0kFR5Y0096AvlZz6KnhauqpngxOrsmgdW0F3SXCTDO5og4+2HwVMlzm+Exm1IC+JTn013BCSm3EQBnc+DDcsBnc+DDcsBnc+IM3HBgWMBxQBYYDqgzMcFX8lyzkkgSd2BLDpdVxxm+4VnXaUOu8Fgx3HRgOhuvGcFXqO+zNQmaJqU/2ECzh3jWDbrmohcHmY2Wtrhi1fAZsuGqt+Wrn4JkLfknt8YS8BFNOUjp2xtrjkgRZ3+ClGLDh+GDCkuD5BUWSS8gXSprkOy8rG8uoDFezr3e+oAmpaTXg5vNqTKtCWd8U5LxMw0JZRi2fsRmOyZScH68pr+VbIrnmE9Ia8ynAcAESdi1toyXnWrBEvjN4w03OIkG2OKMyXM2+pJp3+SU1u+nCEr67vhLChZLmXdk6ZusYtXwGZjgwdGA4oAoMB1SB4YAqMBxQBYYDqgzGcFXR79XLqg0IfvC0bYlaNUWGq9p5b3NM3oXhEqcKKsBwJFNhuCaTHKBa+/64lcks59NINWuhq0zquCLuqqiGExSsu8w13ypz7duKeliGIyf0Bd2EYCZTi1QLKguDtecY5KNFKUgSKsEPuORDBXfbR48M58blY/uCvlpyNZ+g3CI+0uqSCmTc/ewrSi7kW0qeevCGM5Fo8mpm0FW24mQ5d4nbBqPgq8srkJO6n33D8s0HN5kZ1mXwhovVFKoFlfkekhWChydJrjIMJ6wyBsNZfTMP+X0pbjjytOSryB7KKjBpwVnIYPJeBenjd6nkGKYmv9w3v5kW3ERfY02k8hy8bxxeIViXVyBzJNfM1gWH8p0IT/eG8xE1BhgKMBxQpY+GmyxsY1rQOX00HBgxMBxQBYYDqgzbcFXGl3pNhwX76RvkdJXzdozmJgzbcMlUnjec0hR6C9+ke1dhqGk0XJGNhuHS6LXhqmvvp1fGk39FPTmRQV42eKvyv9VuPfRF+Ob5VWRjyWr8pplpaVsqp++GI/eX2RTJ1jA5/MEEg1ZCbPM1ZaNSalEXzHUmfTccf+0GJVvD5ASr5PQmSfD1lq8Wa7g6ZkvljMdw7kOJrLzihLTefAkmfG9p5fggc2E+FO6qkPEYTr47bg5/QlGZaQl80eRyMFwcLRlOosxXSV4VJRvVcBuGY/pJZiSGizq85u4EX9zSJCN8guSaWWV1labGlCAvrAb4PUyg14YDnQPDAVVgOKDE5PiKy8JwQBUYDqgCwwFVptRwVeirk2CCvES+FCNeSq2NJklgODpY0HCtMpQ+G2A4OjiUgxxKnw1jMFxTy4zUnvfNm1u8CK/gLmdKuBfuta9/yYBBfX5MfpziDN5w5C6Tx0DeZaQYhdpzosIGJEHhKl9LkgGZzPYYvOFMEo6WXF5WwQ0WLGTddfWj2lNgDIYzyzUR8y4TtHT4a2s0oYIbtCJ8/2YOL07qR7WnwOANJzxjXzAo5VPIaSaqEzIOw3VvuEk5K1i3Zji5AumJtEJBw/kak7fXNoM3XG1YTXJgDYyORIFvxiflPiQ13SW+BLcZpjdJrbYZg+GAibKBYoHhxgYMB8MpMdnwrrsIAMMBVWA4oAoMB1QZjOGqyK9OYvMzqQTvkLVUcViM1nBd0arhFDah7RIwXGFgOJ6+G24iUofe7nev+fyooK8EWc69ICcK1m1kTUHroS8z2DAzo9uGLzmNXhuuWrvXVrD2nG4l+DGXPEhGJOXIQ4pqhteUb458RolCJsMwXC3YsrIHz/Tjfk6rK28mIRibLFfIZJCGM7ES5AfvE7Eibj/u56i68jFzgkwyObhcIZNBGo5Jzjn4YEI1CsO5DQSbkSwUMmzDWbvQ0skFS5Aiat5KNpy8Q19yAr02XL32JcANusm+azdfHhSW8F34JuKDPnG+kE9WsntuiWByAn03HBgZMBxQBYYDqsBwQBUYDqgCwwFVRmu4SvydvDwzH7IW30DO3Sh09gGG68ZwPWmv8r+H1xIwHAynUaih14ZrRMyIe11d+7Emk2ndNfODmb7erKKxrVaO+fhB+CC51jcmOSyvINkTCf01HLm/tbEvZqTyHIBPp6Jc4qvoa48XCdYl75YdhLxrTeGbiCmaw0gM514LzykYTGuv1a4KTpQ2RQ69NpyJdcv3MPNofRXJ9oQN5HdlBXPWJkwh3xMJvTYcE5fslOSuLxjVXkKJtK6Y2eXB5CmKMAzDBTedOdGCxyNvLxj03eUzmYfBcuREaVPk0F/D1cbzOTmztSl8prvjZpPBTLI3ybUlWAm8xQzCPOR7YKYQKpDLE+i14YSU2ouu9KMKJTejNgUPDNe9flShqGYq/zNlV8BwPYIfZLKfCZppC1tiDIYDAwKGA6rAcEAVGC6RKvT1VnvipZgckEIhkyk1XNpGy1e1fZD5+vpWmwDDtbIKhvMxKsNV1Dv1tfPWgPXQF7GkXJHg8rT2XHG+EzLiluYV1Bib4SrHEBV1kGTQSsiRIs8yWVO4iqkr7FCBsRnOvZYHk1fxmWrt+YDh2iL5RE1ipSwF925+e3yC2YBbVKigBgzXijmUDZc5iyZjM5y7ofknKgyS1TXbY+ryCpqMzXD12nNt4laQfCg5Zt+RN6Xdu2ntyTshFdzSTAlNRmi43tLz9nSA4fToeXs6wHB69Lw9HUZlONB/YDigCgwHVIHheko10i/4YDigCgwHVJlewzUd8sHK+fFAMMEMZspGtToIptRw5NH6gr7r2GCsbGyrgwCGo4PBo00zREKCvNVBAMPRwf4Yrvb/8oEb7z8wHB3sleGEdwcBDFfAOm5yQcNFLe8/U2q4OvK7VOa68n+Xmi+b3GpvmV7DlWIQx9wfYLhcYLgoYLhcYLgoYDigCgwHVIHhgCowHFAFhgOqwHBAFRgOqALDAVVgOKAKDAdUgeGAKjAcUAWGA6q0brht27ZtB+Aa27Zta9dwAAAAAAAAAAAAAOPg/wFdK3Q504/uIAAAAABJRU5ErkJggg==" /></a>For most of my colleagues in banking, this is a stressful time of year. Yeah, the holidays are upon us. Yeah, the kids have holiday shows and final projects to prepare for. Yeah, there is a long list of presents to buy. Yeah, the home team is one game away from a bowl. For bankers, atop all of that, this is prime-time budget and planning season. Their fate is determined for at least the next 12 months through a gauntlet of analysis and discussion about prioritization, roadmaps, and funding.<br />
<br />
The same is equally true for my colleagues in the software industry as they determine what the future holds for their products. Even us consultants get together for tealeaf-reading sessions, trying to anticipate the coming needs of our clients.<br />
<br />
This period can be exhausting, but one great side-effect is that a bunch of senior people put their heads together. This is a perfect opportunity for people across the organization to
educate each other and especially the C-suite on "whats hot" in their
area.<br />
<br />
In between discussions, in halls, elevators, conference rooms, and on conference calls, there is inevitably some idle time. If you find yourself in one of those moments with your boss's boss's boss, don't blow the moment by hiding in your Blackberry to avoid the awkward silence. Tell them something that will stick with them ... give them your elevator pitch!<br />
<br /></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-32088931261527664042011-08-25T07:02:00.000-07:002011-08-25T11:13:58.556-07:00Just in: Market Share Stolen by Hackers!A <a href="http://online.wsj.com/article/SB10001424053111904009304576528363095538754.html">Wall Street Journal article today</a> carries the following quote:
<br /><blockquote>Chinese state television has broadcast footage of what two experts on the Chinese military say appears to be a military institute demonstrating software designed to attack websites in the U.S.</blockquote>DailyTech blog captured <a href="http://www.dailytech.com/China+Brazenly+Brags+About+Internet+Attacks+on+US+in+Leaked+Video/article22522.htm">screenshots</a> including the image below.
<br />
<br />We've felt, feared, or suspected as much for years now, but evidence is becoming undeniable that we are engaged in a new Cold War which is being fought in cyberspace. <a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEin91zpcd-6oHFV05dRYGe3UUBjISHFun3iZjKNbnJf3Efe3jeui7gy9HSkrejNb2CFD_NWp3VtSQX_EHbNA0N5vBT0uxc1e8eGd7cvhK8kWBPHCq6VW2BLVJfnIGtB5HJj5QeyAwjlonlS/s1600/chines_hackers.jpg"><img style="float:left; margin:0 10px 10px 0;cursor:pointer; cursor:hand;width: 400px; height: 267px;" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEin91zpcd-6oHFV05dRYGe3UUBjISHFun3iZjKNbnJf3Efe3jeui7gy9HSkrejNb2CFD_NWp3VtSQX_EHbNA0N5vBT0uxc1e8eGd7cvhK8kWBPHCq6VW2BLVJfnIGtB5HJj5QeyAwjlonlS/s400/chines_hackers.jpg" alt="" id="BLOGGER_PHOTO_ID_5644858218923810578" border="0" /></a>This new <span class="blsp-spelling-error" id="SPELLING_ERROR_0">Cyber</span> Cold War is the most unconventional and asymmetric war the world has ever seen. Control is extremely decentralized. Weapons are easily acquired. The risk of retaliation is low. Battles are waged remotely. The prosecutors and victims of the war can be anyone or any group of people. Governments, individuals, and businesses are all players, like it or not.
<br />
<br />The <span class="blsp-spelling-error" id="SPELLING_ERROR_1">WSJ</span> article shows, however, that more conventional power structures are now on the battlefield. Whereas many in the <span class="blsp-spelling-error" id="SPELLING_ERROR_2">LulzSec</span> group may have simply been bored, over-<span class="blsp-spelling-error" id="SPELLING_ERROR_3">caffeinated</span> students who wanted some celebrity, my clients and I are increasingly seeing evidence to support the <span class="blsp-spelling-error" id="SPELLING_ERROR_4">WSJ's</span> case: governments, particularly those of Russia, China, and the US are quietly backing attacks.
<br />
<br />Many people would laugh at the notion that a foreign military might wage an online attack on a US financial institution. Consider, however, two factors which might give them motivation:
<br /><ol><li>Sovereign Wealth Funds (SWFs) increasingly own debt and equity of governments AND businesses. This gives them a financial interest in the success (or failure) of certain companies as well as economies. Hack a bank, leak a headline, and watch the share price drop until a buying opportunity has emerged.</li><li>Many emerging market countries have discovered that they don't have to create an economy as big as the US in order to have companies which compete on a global scale. These companies can be jump-started with some quiet government support. As a result, it has become common policy to support "national champions" which successfully compete against the largest and most mature global (though still mostly US-based) companies. Government-sponsored hackers might help these champions by hacking the competition and stealing trade information or by creating bad headlines.
<br /></li></ol>Like it or not, we have to acknowledge that certain governments have the means, the motive, and the opportunity to commit cyber attacks against financial institutions. In all likelihood, this has been going on for at least several years. Consider a <a href="http://www.telegraph.co.uk/news/worldnews/asia/china/5071124/Chinas-global-cyber-espionage-network-GhostNet-penetrates-103-countries.html">March 2009 Telegraph.co.uk article</a>:
<br /><blockquote>"A vast Chinese cyber-espionage network, codenamed GhostNet, has penetrated 103 countries and infects at least a dozen new computers every week, according to researchers ... [GhostNet] is the latest sign of China's determination to win a future 'information war'... In 2003, the Chinese army announced the creation of 'information warfare units'."</blockquote><a href="http://www.foxnews.com/story/0,2933,511478,00.html">Fox News added to the story</a>:
<br /><blockquote>"The Chinese government on Monday denied it was behind GhostNet"</blockquote>Banking has the notion of security at its core. Think of a bank branch and you'll instantly visualize vaults, armed guards and video surveillance. Behind the scenes, banks all have hardened <span class="blsp-spelling-error" id="SPELLING_ERROR_5">ATMs</span>, teller stick-up procedures, passwords and permissions. In other words, security is tightly integrated with their physical channels.
<br />
<br />It is also tightly integrated into their physical products through watermarks, microdot printing on checks, serial numbers on other financial instruments, signature specimens, etc.
<br />
<br />Ironically, banks have been dangerously slow to understand how this relates to the online world. Today's banks are dot-<span class="blsp-spelling-error" id="SPELLING_ERROR_6">coms</span>. Online banking is now a core product. Moreover, it is the "face of the bank" for many customers. It is the gateway or channel through which all other products and services are offered.
<br />
<br />Dot-com execs have an advantage in the realm of security and fraud inasmuch as their core product is a piece of technology which intrinsically has a set of permissions and security controls built in. The tools their engineers use also have permissions and security controls at their core. Bank execs need to think like dot-<span class="blsp-spelling-error" id="SPELLING_ERROR_7">commers</span>. Online security and fraud prevention are just as intrinsic to their core products as signature cards, credit scores, personal relationships, and armed guards once were.
<br />
<br />The logical conclusion is that banks need to be organized, staffed, and run more like dot-com businesses to survive in the current <span class="blsp-spelling-error" id="SPELLING_ERROR_8">Cyber</span> Cold War. Security must be "baked in" to everything they do, just as credit scores and ratings have been baked into lending and trading decisions for decades. Executives should make no mistake: on the current battlefield, market share is not stolen by a bank down the street who might lure customers away with better rates and free toasters. Market share is "stolen" by hackers who ruin the bank's reputation or steals clients' identities and thus causes customers to flee.
<br />
<br />It is no longer a sci-fi fantasy that these hackers may be shadow agents of a competitor or even a government intent on manipulating markets, economies, or even specific businesses.
<br />NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-80478620406007811292011-08-13T17:12:00.000-07:002011-08-25T10:52:49.710-07:00In Case Your Thought ATM Skimming Was a Third-World Country Problem...<h1 class="articleHeadline">Boynton, FL Police warn of new twist on ATM identity fraud</h1><a href="http://www.palmbeachpost.com/news/crime/boynton-police-warn-of-new-twist-on-atm-1379582.html?cxtype=rss_news">http://www.palmbeachpost.com/news/crime/boynton-police-warn-of-new-twist-on-atm-1379582.html?cxtype=rss_news</a>
<br />
<br /><h2 class="post-title">ATM Skimmers: Hacking the Cash Machine</h2><a href="http://krebsonsecurity.com/2011/04/atm-skimmers-hacking-the-cash-machine/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+KrebsOnSecurity+%28Krebs+on+Security%29&utm_content=Google+Reader">http://krebsonsecurity.com/2011/04/atm-skimmers-hacking-the-cash-machine/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+KrebsOnSecurity+%28Krebs+on+Security%29&utm_content=Google+Reader</a>
<br />
<br /><h2 class="post-title">Crooks Rock Audio-based ATM Skimmers</h2>The <strong>European ATM Security Team</strong> (EAST) found that 11 of the 16 European nations covered in the report experienced increases in skimming attacks last year.
<br /><a href="http://krebsonsecurity.com/2010/11/crooks-rock-audio-based-atm-skimmers/">http://krebsonsecurity.com/2010/11/crooks-rock-audio-based-atm-skimmers/</a>
<br />
<br /><h2 class="topTitle"><a href="http://www.chrisistuff.net/2009/10/21/magstripe-reader/">Cracking a Magstripe reader and Other Shady How-To's
<br /></a></h2>
<br /><a href="http://krebsonsecurity.com/2010/11/crooks-rock-audio-based-atm-skimmers/">http://www.chrisistuff.net/2009/10/21/magstripe-reader/#more-93</a>
<br />
<br />I sell ATM SKIMMER, price 1000 dollars.
<br />
<br /><a href="http://krebsonsecurity.com/2010/01/would-you-have-spotted-the-fraud/comment-page-4/#comment-19611">http://krebsonsecurity.com/2010/01/would-you-have-spotted-the-fraud/comment-page-4/#comment-19611</a>
<br />
<br />
<br />
<br />NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-11770183415195769922011-06-13T19:54:00.000-07:002011-08-25T10:27:56.497-07:00The Convergence of Data, Identity, and Regulatory RisksThis blog started 2011 with a post arguing for the inclusion of <a href="http://lessriskybiz.blogspot.com/2011/01/risk-by-any-other-name-would-burn-as.html">financial crime as a type of risk</a>:
<br /><blockquote>"Financial Crime (including topics like Money Laundering, Identity Theft, Fraud, Unauthorized Access, and Data Theft) is the next frontier in the evolution of Risk Management." 1/3/2011
<br /></blockquote>Halfway through the year, this has been borne out in the headlines. While no institution is immune, headlines this week have given one clear example of what I was talking about:
<br /><blockquote>"Citibank has revealed that it detected a data breach last month that exposed fully 1% of all its North American credit card customers’ account details. <span class="blsp-spelling-error" id="SPELLING_ERROR_0">Citi</span> has about 21.2 million credit card customers in North America according to its annual report, implying that close to 210,000 accounts may have been hit." Andy <span class="blsp-spelling-error" id="SPELLING_ERROR_1">Greenberg</span>, <a href="http://blogs.forbes.com/andygreenberg/2011/06/09/citibank-reveals-one-percent-of-all-accounts-exposed-in-hack/">Forbes Blog.</a>
<br /></blockquote>Only 11 months ago, the remnants of Countrywide Financial settled a class-action lawsuit by setting aside $56.5 million (not including court costs) to cover claims of anyone impacted by an alleged data breach of 2.5m identity records. They, like Citi, were particularly criticized for delaying disclosure. This presumably allowed them time to assess vulnerability, fortify security controls, and perhaps get their legal arguments in order. At the same time, their delay gave identity thieves extra time to use the stolen data to defraud <span class="blsp-spelling-error" id="SPELLING_ERROR_2">Countrywide's</span> unsuspecting customers.
<br />
<br /><span class="blsp-spelling-error" id="SPELLING_ERROR_3">Countrywide's</span> negotiated settlement puts the average hard-dollar cost of losing an identity record at $22. Many analysts estimate that the all-in number is four times as much once you factor in the soft costs such as reputation damage, lost business, and cost of additional controls. As a result, the rule of thumb I and many of my clients use to size up the cost of a data breach is $100 per identity. That makes Citi's breach quite costly!
<br />
<br />In fact, <span class="blsp-spelling-error" id="SPELLING_ERROR_5">Citi's</span> latest incident comes atop a tide of recent compromises at a number of global firms, including a particularly disturbing breach of the "gold standard" <span class="blsp-spelling-error" id="SPELLING_ERROR_6">RSA</span> <span class="blsp-spelling-error" id="SPELLING_ERROR_7">SecurID</span> tokens which are used by many firms as an enhanced security measure for things like sensitive network access and large-dollar online banking transactions.
<br />
<br />To pretend that these events "won't happen here" or "are black swans" and thus don't need to be factored into the price of doing business is as negligent as saying that mortgages never go underwater. Blithe assumptions like these are precisely why big, smart firms end up in catastrophe.
<br />
<br />Finstitutions need to view financial crimes including data theft, identity theft, and fraud as risks which:
<br /><ul><li>are intrinsic to their business, just like credit and market risks</li><li>are not outlier events, but rather are inevitable (and growing more frequent)
<br /></li><li>must be mitigated, monitored, and controlled
<br /></li></ul> That's lesson one of 2011.
<br />
<br />Today, 47 states have data privacy laws. It's the <span class="blsp-spelling-error" id="SPELLING_ERROR_8">Internet</span>, people! State-by-state laws don't make sense in this context. The good news is that, without a doubt, legislators and regulators alike have noticed these headlines and have stepped up their efforts to develop additional regulatory requirements to address the issue.
<br />
<br />The Forbes blog goes on to say:
<br /><blockquote>"The White House’s proposed <span class="blsp-spelling-error" id="SPELLING_ERROR_9">cybersecurity</span> policy outlined last month would include a mandatory federal breach disclosure law, and <a href="http://www.bloomberg.com/news/2011-06-07/sen-leahy-unveils-data-breach-bill-seeking-enhanced-protections.html">another bill</a> proposed by Senator Patrick <span class="blsp-spelling-error" id="SPELLING_ERROR_10">Leahy</span> would similarly make concealing a data breach a federal crime."
<br /></blockquote>These legislative proposals are atop upcoming FDIC regulations and <span class="blsp-spelling-error" id="SPELLING_ERROR_11">FFIEC</span> standards on authentication which will likely contain provisions addressing:
<br /><ul><li>More frequent risk assessments focusing on authentication and related controls at least every 12 months and prior to implementing new electronic financial services</li><li>More robust controls as the risk level of transactions increases. </li><li>Layered security to detect and effectively respond to suspicious or anomalous activity both at initial <span class="blsp-spelling-error" id="SPELLING_ERROR_12">login</span> access and at initiation of online transaction</li><li>Multi-factor authentication, well beyond simple device identification and easily answered challenge questions </li><li>Increased customer education and awareness</li></ul>Therefore, lesson two of 2011 is that regulatory compliance is another risk which should be incorporated into every <span class="blsp-spelling-error" id="SPELLING_ERROR_13">FI's</span> risk management framework, policy, and practice.NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-85540581308602066002011-04-13T09:52:00.000-07:002011-08-25T10:30:46.298-07:00You Get What You Pay For: Building Business Cases for Risk Management Investments<span style="font-size:130%;"><span style="font-weight: bold;">In 1993, I visited a factory in the (recently) former Soviet Union. </span></span>
<br />
<br />On the books, the place had a staff of 5,000 making 10,000 lenses a month. In reality, only about 1,000 turned up on any given day. That was fine with management. See, a few years back, Moscow had some extra budget and they let the factory buy some incredibly cheap used lens polishing machines. This meant that the army of 1,000 human polishers were no longer needed, but since nobody "up the chain" cared, the management just kept these folks on the payroll. It made the operation look bigger on paper, and therefore they got a bigger budget from Moscow.
<br />
<br />Sadly, they could never get the machines to work quite right, so they kept a few hundred human polishers to "touch up" the lenses before they were shipped. They apparently assumed the machines were good, since they had previously been owned by a well-known Japanese lens manufacturer. In fact, they were heavily used, out-of-date models producing lenses so low in quality the Japanese couldn't sell them at any price point. After installing these machines at the Russian factory, quality went down overall, but was at least consistent, which made managers happy. Nobody at the factory asked if this would help them sell cameras, since their only customer was the Central Government in Moscow. What this intermediary did with the cameras afterward was not their problem.
<br />
<br /><span style="font-weight: bold;font-size:130%;" >Until the Soviet Union collapsed.</span>
<br />
<br />Their first question to my group was: <span style="font-style: italic;">Who will buy these lenses which are twice the price and half the quality of the competition? </span>
<br />Answer: Nobody.
<br />
<br />Second question was: <span style="font-style: italic;">OK, we learned our lesson. Never again. We want to become state-of-the-art. How? Who will give us the money?</span>
<br />Answer: Fuggedaboutit. By the time you catch up, the competition will have improved again. Nobody bets on a losing horse.
<br />
<br />Third question was: <span style="font-style: italic;">If we were to give you the factory and a 3-year supply of aluminum for free, would you at least keep paying our staff of 5,000?</span>
<br />
<br />It was a desperate situation, a totally reactive management, and a totally losing business case. After some analysis, my delegation told them to make car antennas with the aluminum and we walked away. Instead, the factory closed, the staff stopped getting paychecks, and the managers became "full-time pension administrators" since pension liabilities were all that was left of the once-bustling company.
<br />
<br /><span style="font-size:130%;"><span style="font-weight: bold;">Wait, what does this have to do with risk management in financial services? </span></span>
<br />
<br />If we in the Financial Services industry don't want to become "full-time pension administrators" presiding over gutted, non-productive zombie firms, we shouldn't act like Soviet factory managers.
<br />
<br />Unfortunately, in certain ways, we do. Look at your organization's decision-making process through the lens of my anecdote. How similar is it? Does the annual budgeting process rule? How are those budgets determined? Then look at your process through a different lens. Imagine your department as a standalone business. Would you turn a profit? Would you be competitive? Would it change the way you spend? Would your customers be satisfied, or would they go elsewhere?
<br />
<br /><span style="font-size:130%;"><span style="font-weight: bold;">If you don't know the answers, read on...</span></span>
<br />
<br />I don't know the answers either, but here's how I think about the problem when I talk to my clients. Viewed very simplistically, FIs make risk management decisions in response to events and losses, either at their own institution or at a competitor. In other words: they're reactive. They don't want to waste money to manage a risk which is never going to happen. When it comes to incorporating risk management into their business cases, they rarely go much further than the camera factory managers did: "won't happen" or "can't happen here" meaning that their firm is somehow special or smart enough to avoid that risk.
<br />
<br />Few organizations bother to invest enough time for a comprehensive cost-benefit analysis (CBA) of internal investment projects. Many manager don't even want a CBA because that would require them to familiarize themselves with each individual investment proposal. They prefer to operate at an overall budgetary level. As long as they have unspent budget and you can win the political fight for money, they'll let you have it.
<br />
<br /><span style="font-size:130%;"><span style="font-weight: bold;">Just like Moscow did for the camera factory managers.</span><span style="font-weight: bold;"> They had to change, and so will FIs. </span></span>
<br />
<br />Structurally (ie: permanently) smaller margins are already forcing FIs to be more discerning in their investments. Value for money can no longer be taken for granted. CBA is already taking over.
<br />
<br />That may leave your head spinning with questions. How can I do a CBA in risk management? What is the "price" of a risk? How would I quantify the benefit of preventing something from happening? All good questions.
<br />
<br />Start with what you already know. You can't assess what you can't measure, so make sure your operational metrics are up to the task. Enhance your processes as necessary to have comprehensive and high-confidence numbers on the all-in average cost per type of work item. Make sure this is broken down into roles. Investigators' time is important, but don't forget about their team leaders and managers, the QA review team, the auditors, the analytical team, etc. Make sure your per-item metrics add up to 100% of your total labor costs for the function or department.
<br />
<br />Layer on technology costs, not by vendor or by solution, but by investigative work item. How much does it cost all-in to get an AML alert? or a card fraud alert? Again, this has to add up to 100% of your spend on technology. Often, shared technology costs are tough to measure, so work with your technology partners to really understand your use of those shared pieces as a percentage of the whole.
<br />
<br /><span style="font-size:130%;"><span style="font-weight: bold;">If, due to your company's budget allocation methodology, your department gets some or all technology services for "free" don't think you're off the hook. </span></span>
<br />
<br />Those services are paid for by someone, somewhere. Find out who. Get them on board. They also need to think in terms of business cases. If you can reach across organizational boundaries and collaborate with other departments to reduce overall IT costs, you're likely to appear on the promotion radar at high levels of the organization. Senior managers view this type of behavior as alchemy and tend to reward it well.
<br />
<br />Now look at your impact on the institution's profitability. What business do you stop/prevent? What business do you monitor? What business is outside your scope? For each of those categories, what are the historical losses and recoveries?
<br />
<br />Similarly, look at customer impact. What is the current attrition/retention rate of business? Talk to customers to find out why. Collaborate with your lines of business to assess customer satisfaction, especially among those who are "touched" by your group. On the fraud side, find out how many defrauded customers leave the institution within 6 months. How happy are they by your handling of their fraud event? On the AML side, the "customer" might be a regulator. Find out what their risk assessments say. What are they concerned about? What kinds of fines or orders are they hitting competitors with?
<br />
<br />Get your statistical gurus to slice and dice the results and find differences. The end of this effort should be a "marginal contribution to profitability" percentage.
<br />
<br /><span style="font-size:130%;"><span style="font-weight: bold;">In other words, how many basis points do your activities add to (or remove from) overall profitability of each line of business?</span></span>
<br />
<br />Benchmark these stats against industry (or at least peer) numbers. Analyst reports and consulting firms are good at helping with this cross-industry view.
<br />
<br />By following a framework like the one described here, the "benefit" side of the CBA can be fully understood. The initial effort might be high, but this work is reusable for every subsequent CBA. Individual metrics might change, but the overall benefit-assessment framework will not.NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-89283796791690557472011-03-14T07:52:00.000-07:002011-03-31T18:03:42.014-07:00What Amazon Can Teach Banks About Fraud May Surprise YouWhile they do not always succeed, FIs constantly fight a very expensive battle against fraud attack. Across the US industry, FIs spend $250-300M a year on IT alone. Spending on Fraud Prevention Operations averages 6x-10x this number. That's nearly 1% of industry revenues (using <a href="http://money.cnn.com/magazines/fortune/fortune500/2010/industries/31/index.html">numbers from Fortune Magazine</a>). Sadly, despite this significant investment, fraud losses are estimated by Gartner Group to be 5-8% of revenues. This goes straight to the bottom line as a write-off, especially painful in an industry that <a href="http://seekingalpha.com/article/192515-s-p-trims-2010-11-u-s-banking-industry-losses-to-790-billion">hasn't turned a profit in 3 years</a>.<br /><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgSMTliEaPyb_WsQG5wF35FwRrx9PIBuprgBLORbNmNC9S3MYG7raMWxX4wwKgYd4KeuzPL05j5deITXYmu0G8p21xlssAyshO01oWaY3KevOB4piQW_d6Y9DIwoiV4CNEcG3ZLQSyCVlaK/s1600/spend-it-ops.jpg"></a><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEimvFnpHO-p-KlmG-Set8WUkSNFJeHgXlc48gXrEaw70QBMBXEqJ3SZjO8fAPYINltFed0F5FVQ0LSUeeg3PzWYPPvoLREKNG6iZH_yKVn_2yEbjjOzVrv7sYa589053dS8CWxfQy1mfk1m/s1600/spend-it-ops.jpg"></a><br /><div><div><div><div><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgTa3V-qbrzfm_q93PmjR7MIEoas0u8mkjp6QmBfSXKEqyv4qC82hyD2_al361HsND0tzK5peQYfeBB1rV65tP5o3nwyERK1RRX5EZ12cyX6YALWsiwk3vc2hpQPnFXBjs9Bg0gBNi3FI4/s1600/spend-it-ops.jpg"><img style="margin: 0px 0px 10px 10px; width: 400px; float: right; height: 186px;" id="BLOGGER_PHOTO_ID_5583993887769493954" alt="" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgTa3V-qbrzfm_q93PmjR7MIEoas0u8mkjp6QmBfSXKEqyv4qC82hyD2_al361HsND0tzK5peQYfeBB1rV65tP5o3nwyERK1RRX5EZ12cyX6YALWsiwk3vc2hpQPnFXBjs9Bg0gBNi3FI4/s400/spend-it-ops.jpg" border="0" /></a>Let's focus for a moment on the ratio of spending between IT and Ops. Across the industry, FIs spend far less than a third of their Anti-Fraud budget on technology and projects. If you include actual fraud losses in the numbers, that percentage drops well below a tenth of all spend.</div><div></div><br /><div>This tells me that FIs don't trust their technology. When the rubber hits the road, they fall back on laborious manual processes. Step onto the floor of an FI's Anti-fraud department and you'll see why: reams of paper, hundreds of phone conversations, managers prowling the aisles, quants debating math on whiteboards, and armies of data-crunchers building ad-hoc reports in Excel. Look more closely and you'll see that the investigators have multiple PC monitors so they can switch among the dozens of bank systems, each of which contains a few small pieces of the client's overall behavior puzzle. I call this "swivelware" or "alt-tab-ware" and I see it as a clear symptom of a larger problem in the industry.</div><div></div><br /><div>Swivelware is simply the human response to a failing of technology. Investigators need a full picture of the client's profile: "one-stop-shopping" access to all the client's identifying details, relationships, transactions, historical behavior, and other info. To put all this info on one screen requires a deep and comprehensive level of IT system integration. That's not easy or cheap even under stable conditions. It's nearly impossible in the real world of booms and busts, economic cycles, industry consolidation, new products, new client segments, new fraud patterns, new IT systems, and constant transformation. In fact, this is a never-ending initiative. Unfortunately, most IT spending is driven by corporate budgeting cycles, not by business objectives. This leads to a myopic, fire-fighting, quarter-by-quarter approach in which managers try to constrain the life of these initiatives by breaking them into discrete, well-bounded projects. Unfortunately, the sum of those parts does not add up to the whole business objective, and the result is swivelware. </div><div></div><br /><div>When I hear a client say they have a "never-ending project" I know that, like it or not, they're really talking about a mis-categorized permanent business process, just like Accounts Payable, HR, or Accounting. It is often a tough sell, but my objective in these cases is to convince my client that they must create a permanent capability to address the business need, including permanent staff, permanent funding, and permanent management with permanent objectives, authority, and accountability. </div><div></div><br /><div>FIs which have the foresight to do this will lead the industry in establishing competitive advantages through unique and advanced capabilities. Said another way, if you stand up a department whose objective is ongoing integration in order to develop a holistic view of each client, that department will develop capabilities and skills required to fulfill their stated objective. They will also quite likely find other creative ways to use those capabilities and skills to create additional unanticipated value for the institution.</div><br /><div></div><div>One telling example of this is Amazon, which started as a bookseller, but realized its ingenious supply-chain was a competitive advantage. It leveraged this capability to become a marketplace for all sorts of products, and grew exponentially as a result. More recently, the Amazonians have realized that the infrastructure they built to link millions of customers to thousands of merchants is another competitive advantage. They are now leveraging this to offer "cloud computing" services to businesses.</div></div></div></div>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-41268353620420279352011-02-13T02:43:00.000-08:002011-08-25T10:45:56.143-07:00Are You a Proud Dad?<blockquote style="font-style: italic;">My dad gave me one dollar bill
<br />'Cause I'm his smartest son,
<br />And I swapped it for two shiny quarters
<br />'Cause two is more than one!
<br />And then I took the quarters
<br />And traded them to Lou
<br />For three dimes -- I guess he don't know
<br />That three is more than two!
<br />...
<br />And then I went and showed my dad,
<br />And he got red in the cheeks
<br />And closed his eyes and shook his head--
<br />Too proud of me to speak!
<br />
<br />-<span style="font-weight: bold;"> Shel </span><span style="font-weight: bold;" class="blsp-spelling-error" id="SPELLING_ERROR_0">Silverstein</span>
<br /></blockquote>People working in anti-fraud live and breathe money: losses, recoveries, write-offs. If it costs $1,000 to investigate and recover $500, we all intuitively know that would be a waste of time. We might as well just write off the $500 and move on. And yet...
<br />
<br />The following conversation is hypothetical, but its strikingly similar to what I've heard from several clients in recent weeks: <p class="MsoNormal"><a name="OLE_LINK2"></a><a name="OLE_LINK1"><span style=""></span></a></p><blockquote><p class="MsoNormal"><a name="OLE_LINK1"><span style="">Client: "Our detection systems are solid, but we're always on our back foot! We want to prevent fraud, not just detect and chase it!</span> We need some sort of prevention system to cut our losses.”</a></p>Me: “You might not need a new system. Does your existing technology really ensure your team looks at the biggest risks first?” <p class="MsoNormal">Client: “Of course! We do the big transactions first. We have a ‘red’ queue for stuff that requires immediate action.”</p> <p class="MsoNormal">Me: “So I imagine if there was a $50k wire, way out of normal for the customer, it would pop into the ‘red’ queue and get looked at right away.”</p> <p class="MsoNormal">Client: “Right.”</p> <p class="MsoNormal">Me: “And if, at the same time, your systems saw a different account with a series of unusual log-in and balance inquiry events, it would put that in a lower-priority queue?”</p> <p class="MsoNormal">Client: “Yeah, unless it was linked to a financial transaction.”</p> <p class="MsoNormal">Me: “What if those <span class="blsp-spelling-error" id="SPELLING_ERROR_1">logins</span> were for the CFO of a very profitable business banking client?”</p> <p class="MsoNormal">Client: “Well, the system <span class="blsp-spelling-error" id="SPELLING_ERROR_2">wouldn</span>’t really know that. We’d see it during investigation.”</p> <p class="MsoNormal">Me: “What if the CFO had online access to draw on a $1m revolving line of credit without secondary approval? What if he <span class="blsp-spelling-error" id="SPELLING_ERROR_3">hadn</span>’t logged in since 2008, but then one day logged in several times, browsed all over your Business Banking portal, and changed wire instructions for an approved beneficiary?”</p> <p class="MsoNormal">Client: “Hopefully that would set off alarms! Probably not a ‘red’ alert, but we’d notice for sure. I know we get reports from the wire room every morning. We could call the client and verify the change.” </p><p class="MsoNormal">Me: “What if, at 3:55pm Eastern Time that same day, the CFO logged back in, drew down the line of credit and wired $1m out?”</p><!--[if gte mso 9]><xml> <w:worddocument> <w:view>Normal</w:View> <w:zoom>0</w:Zoom> <w:punctuationkerning/> <w:validateagainstschemas/> <w:saveifxmlinvalid>false</w:SaveIfXMLInvalid> <w:ignoremixedcontent>false</w:IgnoreMixedContent> <w:alwaysshowplaceholdertext>false</w:AlwaysShowPlaceholderText> <w:compatibility> <w:breakwrappedtables/> <w:snaptogridincell/> <w:wraptextwithpunct/> <w:useasianbreakrules/> <w:dontgrowautofit/> <w:usefelayout/> </w:Compatibility> <w:browserlevel>MicrosoftInternetExplorer4</w:BrowserLevel> </w:WordDocument> </xml><![endif]--><!--[if gte mso 9]><xml> <w:latentstyles deflockedstate="false" latentstylecount="156"> </w:LatentStyles> </xml><![endif]--><!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman"; mso-fareast-font-family:"Times New Roman"; mso-ansi-language:#0400; mso-fareast-language:#0400; mso-bidi-language:#0400;} </style> <![endif]--> <p class="MsoNormal" style="">Client: “NOW there would be a ‘red’ alert!”</p> <p class="MsoNormal" style="">Me: “And you'd be on your back foot. How much would you have to spend to drop everything and investigate in order to get the money back?”</p> <p class="MsoNormal" style="">Client: “Well it might not be our loss. We can't prevent the client from having a criminal at the CFO spot.”</p> <p class="MsoNormal" style="">Me: “How much would you spend to determine if it was really the CFO or an identity thief? No matter what, the client's not going to be happy. Odds are, they're going to close their account. What kind of heat would you get from the banker in charge of the client? Maybe they even drag you to court. What would that cost? ”</p> <p class="MsoNormal" style="">Client: “Welcome to my daily nightmare! It's the hassle of a lifetime!”</p><p class="MsoNormal" style="">Me: “Wouldn't it be better if your systems could just prevent the wire in the first place? What if my team could get your existing technology to do that?”</p><p class="MsoNormal" style="">Client: “When can you start?”</p> </blockquote><p class="MsoNormal"></p>Just like <span class="blsp-spelling-error" id="SPELLING_ERROR_4">Silverstein's</span> "proud dad" in the poem, this client was a bit red in the face with frustration. His technology and teams clearly had some growing-up to do.
<br />
<br />The problem is that, just like <span class="blsp-spelling-error" id="SPELLING_ERROR_5">Silverstein's</span> "son," nearly all of today's anti-fraud technologies and business processes misunderstand the real objectives ... through no fault of their own. They've been tasked with monitoring a narrow set of intermediate metrics like transaction size, out-of-profile behavior, or unknown <span class="blsp-spelling-error" id="SPELLING_ERROR_6">IP</span> address.
<br />
<br />The key is to take the blinders off and refocus the technology on the true business metrics. Tell them what you're really trying to achieve. Is it minimized losses? Is is minimized operational cost? Is it minimized customer defection? Is it some balance of these? Then empower them with enough contextual data to make an intelligent determination of what's at stake, and what to do about it.
<br />
<br />In upcoming blogs, I'll go "down in the weeds" to examine how technologies and business processes can be transformed in this way. Stay tuned!NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-601468541149527242011-01-20T09:46:00.000-08:002011-02-13T04:37:38.553-08:00The World is Flat for FraudThis blog entry describes a very common fraud pattern in which criminals, using the internet, can very easily and cheaply collaborate globally to reach halfway around the world ... and right into your customers' pockets.<br /><br />If you're a Fraud Prevention Exec at a financial institution (FI), this story should sound like a thousand others you hear every day from your investigative staff. If it isn't, you might want to have a look at your defenses.<br /><br />If you're NOT a bank Fraud Prevention Exec, this blog post is for you! As I discussed in a recent blog post, risk management must comprehensively address <span style="font-weight: bold;">all</span> types of risk, including <span style="font-weight: bold;">identity theft, unauthorized access, and financial fraud</span>. Read the story below and ask yourself whether your FI is addressing this holistically as a risk to the enterprise.<br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1o-RIQPAu23UBXOtQTfBmSw6nG3RUMQKFq4vQlsSLA7gyBu_CFxmsSJjM8mPNvJGxLCK7J52YnJsJvNctqx49aURGGoBS26zECNHZ7e3oFvw72DvHl6_MANdbUWY83lj5Y7KO7lb7iwwa/s1600/blog+-+online+fraud.gif"><img style="display: block; margin: 0px auto 10px; text-align: center; cursor: pointer;" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1o-RIQPAu23UBXOtQTfBmSw6nG3RUMQKFq4vQlsSLA7gyBu_CFxmsSJjM8mPNvJGxLCK7J52YnJsJvNctqx49aURGGoBS26zECNHZ7e3oFvw72DvHl6_MANdbUWY83lj5Y7KO7lb7iwwa/s400/blog+-+online+fraud.gif" alt="" id="BLOGGER_PHOTO_ID_5560664486836345346" border="0" /></a><br /><ol><li>A teenage hacker in Alabama (or Shenzhen China, for that matter) downloads the code for a Zeus, URLzone, or <a href="http://www.itbusiness.ca/it/client/en/home/DetailNewsPrint.asp?id=54730">Champi </a>trojan virus. He experiments and figures out how to secretly place it on a computer via email.<br /></li><li>He brags online about his feat, and soon is contacted by a more seasoned fraudster, who buys the virus for $100. The teenager is ecstatic! Party on!</li><li>The fraudster sends it out to 1,000 random email addresses from an anonymous account. The virus takes hold on several hundred computers. It is structured to avoid most common virus scans.</li><li>The fraudster then places an ad online offering to sell access to the infected computers (yes, there are Craigslist-like sites just for criminals) for about <a href="http://www.eweek.com/c/a/Security/RSA-The-Elusive-Structure-of-the-Cybercriminal-Economy-237961/">$30 to $300 for one month</a>. He knows he has broken some laws, but feels his exposure is limited.<br /></li><li>A criminal in Eastern Europe buys access, allowing him to activate the trojan and receive the victims' balances, account numbers, usernames, passwords, pins, identifying info, and even secret questions.</li><li>The criminal uses this real customer info to set up a series of "mule" accounts at FIs he knows are vulnerable. The real customer doesn't even know these accounts exist.<br /></li><li>The criminal then uses all the usernames and passwords he has gathered to set up funds transfers from the unsuspecting customer accounts to his mule accounts. He knows to do it quietly over a period of time in order to stay under everyone's radars. He probably knows, from anecdotes of other criminals (yes, there are fraudster blogs and chatrooms), exactly what patterns or thresholds the FI is looking for.<br /></li><li>The criminal opens anonymous or mule offshore accounts in countries with weak laws Anti-Money Laundering and Know-Your-Customer laws so he doesn't have to provide any of his own identifying info.<br /></li><li>The criminal places an add on Monster.com or Craigslist for a "work-from-home payroll analyst" who can naively move money for him without raising any alarms.<br /></li><li>He hires a person in the US who, based on the criminal's legitimate-looking instructions, transfers money from the mule accounts to offshore accounts over a period of weeks. By the time the "payroll analyst" realizes they're not getting paid for <span style="font-style: italic;">their </span>work, it's too late. The criminal is gone and his tracks are covered. Once FIs and police investigate the fraud, the "payroll analyst" looks like the prime suspect.<br /></li><li>Meanwhile, the criminal launders the funds through a series of transfers, checks, debit card transactions, bill pays, and stored value card purchases. Once the money is clean, he puts it right in his pocket and takes a 6-month vacation with YOUR paycheck.<br /></li></ol>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-84777426055270436672011-01-03T13:01:00.000-08:002011-02-13T02:36:57.434-08:00A Risk by Any Other Name Would Burn as BadRisk management is bread-and-butter for Corporate-level execs, Line-of-Business leaders, and Risk Managers. Crises like 2008 provide hard evidence that rock-solid risk management is an integral part of the business of finance. Those financial institutions (FIs) that had a comprehensive, objective, and disciplined risk management framework survived. Those that outsourced their risk management to their business partners, trading desks, LOB leaders, or customers found their balance sheets pushed into risky and turbulent waters. Most did not survive the voyage.<br /><br />What follows is a brief and anecdotal discussion of the evolution of how FIs view, and therefore address risk. My objective in trawling this history is to demonstrate:<br /><ol><li>That risks mutate as rapidly as ( the evolution of the business model * the increase in the complexity of the industry )</li><li>That, before managing risk, it is necessary to clearly define and measure it (but that failing to measure it doesn't mean it doesn't exist)<br /></li><li>That the industry is always at least a step (or 3) behind</li><li>That Financial Crime (including topics like Money Laundering, Identity Theft, Fraud, Unauthorized Access, and Data Theft) is the next frontier in the evolution of Risk Management<br /></li></ol>In the 60's and '70's, and thanks in part to the likes of George Soros, FIs discovered that credit risk was a relative measure. A whole market could go up ... <span style="font-weight: bold;">or down</span>, taking even good credits with it. FIs realized they were in a race to catch and control a previously-unidentified form of risk: Market Risk. Thanks to Latin American dictators and Mideastern ayatollahs, FIs learned that sudden political shifts can lead to unexpected moves in currencies, tax regimes, and regulatory structures, which in turn ruin individual customers or whole markets. Hello, Sovereign Risk.<br /><br />The '80's started with rampant inflation, which deeply submerged many loans, bonds, swaps, and other fixed-income instruments. FIs realized they needed to be able to manage the risk related to the overall prevailing interest rates. In order to manage it, they had to identify and measure it. Thus emerged Interest Rate Risk. By mid-decade, Volcker had tamed rates, leading to an explosion in leveraged trading activity by a rapidly-growing list of firms across an ever-diversifying spectrum of markets. Every once in a while, one of those firms couldn't pay up when their margin call or loan came due, or couldn't deliver the securities which they had sold. It was time again to start managing new types of risk: Settlement Risk, Counterparty Risk, Liquidity Risk, Concentration Risk.<br /><br />The rip-roaring '90's grew business size and complexity to levels which far outstripped managers' ability to even understand the risks to the business, much less manage those risks. Authority was implicitly devolved to the front office, for whom risk management is just a hurdle between them and their sale. Rather than deeply <span style="font-weight: bold;">and objectively</span> analyzing risks to new products and services, they outsourced the effort to the market; if a competitor did it, it must be OK. If a smart customer bought it, it must be OK. If the risk management rules and models flashed red with warnings, they were "re-calibrated" to shut up. Welcome to the era of Operational Risk.<br /><br />For quite some time, there was no consensus about what Operational Risk was, how to measure it, or what to do about it. The Basel Committee defined it as "The risk of loss resulting from inadequate or failed internal processes, people and systems or from external events." This was far too abstract for most people to convert into real-world risk management strategies, but at the highest level, most understood that the way they ran their business might come back to bite them. The news provided a steady stream of examples of bone-headed moves by large companies which sent their stock prices into free-fall. Investors got burned. Managers got fired. Risks continued to be piled on. Risk Management was absent.<br /><br />The first 10 years of this century proved that fact. FIs, governments, academics, and talking heads in the news spent a lot of time talking about all the risks a business face: headline risk, bad business model risk, rogue employee risk, reputational risk, legal risk, political risk, act-of-God risk. Without finishing the task of defining what it was, the industry shifted focus to building "something" to manage Operational Risk. Risks were inventoried, abstracted, debated, categorized. Laws (such as Sarbanes-Oxley) were implemented saying that "something" had to be done. "Someone" had to be held accountable. Regulators began prodding their FIs for evidence of compliance. For most FIs, their best evidence was not in results, but in large amounts of money they were allocating to large, ambitious projects, the details and timing of which were TBD.<br /><br />Unfortunately, 2008 showed that, for most firms, the risks beat the projects to the finish line, to tremendously expensive effect. We learned about a new type of risk: Systemic Risk.<br /><br />House prices, over-indebted Americans, Chinese exchange rates, and greedy bankers got most of the headlines, but embedded within the rubble of that crisis were a vast array of crimes. These crimes led to hard-dollar losses which contributed to the gravity of the crisis. The economic downturn, coupled with the globalization effects of the Internet, have led to an increase and diversification in financial crime.<br /><br />While not yet fully emerged from the previous crisis, FIs are once again in a race to head off the next crisis: Welcome to Financial Crime Risk. While many FIs see this as an operational problem, or a law-enforcement problem, it is indeed a risk management problem, just like all the other types mentioned above. It is an intrinsic part of the business of finance, just as the others are. To prevent 100% of Financial Crime is to stop doing business. FIs must instead manage and mitigate it as a risk, making informed decisions about the resources they allocate to the task. FIs must recognize and measure the cost of residual risks which they choose not to mitigate. This is not a one-time decision, but an ongoing process of objectively assessing the cost and benefit of their choices.NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0tag:blogger.com,1999:blog-6727661714844984161.post-12047094149978593982010-08-18T11:12:00.000-07:002011-02-13T04:47:50.507-08:00Are You Fighting Yesterday's War on Fraud?<p class="MsoNormal">First, let me recite some conventional wisdom:<br /></p> <p class="MsoNormal"><span style=""> </span>- C-suites, boards, and shareholders are laser-focused on containing cost and building customer relationships<br />- The cost of acquiring a customer is 5 times the cost of retaining one<br />- Fraud is a counter-cyclical industry, increasing during economic downturns</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal"><br /></p><p class="MsoNormal">Next let me cite a few numbers from recent industry research:</p> <p class="MsoNormal"><span style=""> </span>- <b>25</b> percent of customers touched by a fraud event leave their financial institution<br />- <b>11</b> million identity theft victims in 2009<br />- <b>54</b> billion dollars lost to identity theft-related fraud in 2009<br />- <b>100</b> percent increase in fraudulent online accounts in 2009<br />- <b>12.5</b> percent of Financial Industry IT budgets are spent on anti-fraud measures</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal">For too many Risk and Fraud-Prevention executives, the real sum of these numbers is most evident in their elevated blood pressure. Without a doubt, this is a challenging time to be on the front lines of fraud prevention.</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal">It is no time to find out you're fighting yesterday's war on fraud. Yet many organizations still rely on a sloppy spaghetti of siloed point-solutions and manual processes, predominantly focused on card or check fraud. Increasingly, fraudsters successfully take advantage of this fact by launching multi-channel, phased schemes.</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal">Don't take my word for it ...</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal" style="margin-left: 0.5in;"><i>“financial institutions… are all reporting a significant increase in funds transfer fraud involving the exploitation of valid banking credentials belonging to small and medium sized businesses … Web-based commercial EFT origination applications are being targeted by malicious software.” -- FDIC Bulletin, 21 August 2009<o:p></o:p></i></p> <p class="MsoNormal" style="margin-left: 0.5in;"><i><o:p> </o:p></i></p> <p class="MsoNormal" style="margin-left: 0.5in;"><i>“Dwelling House Savings and Loan, which saw most of its capital get wiped out as a result of a large fraud related to electronic fund transfers, was seized by regulators late Friday.” -- TheStreet.com, 14 August 2009<o:p></o:p></i></p> <p class="MsoNormal" style="margin-left: 0.5in;"><i><o:p> </o:p></i></p> <p class="MsoNormal" style="margin-left: 0.5in;"><i>“Criminals have found out they can make victims of more people than ever before … It continues to be a multi-channel crime.” -- James Van Dyke, President of Javelin Strategy & Research, 4 February 2010<o:p></o:p></i></p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal">Over the coming months, I will use this blog to examine a series of emerging fraud threats and how leading financial institutions are responding.</p> <p class="MsoNormal"><o:p> </o:p></p> <p class="MsoNormal">Combating fraud is a common cause. I encourage readers to share their thoughts, stories, pains, questions, and victories by commenting on this site directly or emailing so I can include your feedback in an upcoming blog.</p>NBWhttp://www.blogger.com/profile/17871922481910861175noreply@blogger.com0