“Catch me if you can.” That seems to be the mantra of the modern day cyber thief, fraudster or money launderer. Cloaked behind anonymizers, spoofing and botnets, criminals employ extensive means to go undetected. While advances in technology can provide organizations with the proactive tools needed to best tackle these crimes, the problem is still pervasive.
According to estimates from the International Monetary Fund and the World Bank, between $2-3 trillion is laundered around the world each year. To illustrate the challenge of combating laundering, a 2013 report from the Council of Foreign Relations found that government regulations and law enforcement agencies are only able to detect and stop $170 million in money laundering activities annually.
[Register for Interop here and check out the “Advanced Threat Confidential: 14 Lessons Learned from Real Cyber Attacks” session on October 4 in NYC.]
To detect and combat criminal activity, financial organizations are working to implement a framework of strong, effective defenses while also minimizing disruption to their businesses. With today’s market volatility and increased pressure from regulators for financial institutions to detect and prevent financial crime, the requirements to comply with regulations, while viewing the problems from all angles and across multiple departments, are imperative.
When I managed a financial crimes Intelligence and Analytics team, I saw this challenge firsthand. Any move toward an integrated approach to fight fraud, money laundering and cyber threats hinges on the availability of data. Whether extracted from various, disparate databases or accessible as the result of investment in Big Data initiatives, developing an integrated approach only moves forward when organizational silos are removed and data is viewed as an asset from which to derive intelligence.
Traditional anti-money laundering (AML) transaction monitoring systems, including those from just five years ago, generate alerts based on patterns and detection strategies. These strategies can quickly become outdated as criminals find new and elaborate ways to evade the system. Many of these systems generate high numbers of false positive alerts that can tie up resources working on leads that are legitimate transactions. While AML transaction-monitoring systems may be able to provide useful information into the nature of financial crimes, they are only effective if the system can make connections and recognize patterns in the data.
Financial crimes can also threaten an organization at multiple points of vulnerability. Focusing on a single channel or line of business, such as wire transactions or expense reporting, can hinder management visibility and allow fraud and money laundering to go undetected. Since financial crime is rife with many nuances, it’s important to keep an open line of communication so information can be easily and quickly shared across departments and geographies.
One benefit of monitoring financial crimes across channels is that it can prevent criminals from exploiting process weaknesses. With an integrated approach, an organization can enable a consolidated view of an operational environment where all risk-related data can be collected and analyzed from multiple perspectives. This unified perspective will not only show overlap in terms of potential fraud or money laundering, it also allows the organization to identify transactions that would normally fall below the radar to be identified as fraud. By linking cross channel investigations, the organization can reduce redundant investigations and free up investigators. Consolidated data can lead to more effective detection/prevention strategies and act as a force multiplier by eliminating multiple case assignments for the same investigations.
Given the global expansion of money laundering, financial institutions need to be careful when assessing and implementing an appropriate AML solution. Since financial service institutions of all kinds – including banks, brokerages, and insurance firms – conduct business in the major and emerging capital markets, compliance with anti-money laundering regulations is required. With several requirements such as know your customer (KYC), watch list screening, and suspicious transaction monitoring, it can be challenging to keep up-to-date with constantly amended, complex AML regulations while efficiently managing available resources and long-term costs.
The financial marketplace continues to grow at a global scale. By approaching AML and other financial crime initiatives with an integrated approach, financial institutions can use data as an asset in communication across departments and stay up to date with evolving requirements. Once the nuances of financial crimes are understood, it becomes possible to mitigate threats before they happen.
Troy Pugh is a financial crimes subject matter expert with IBM Software Group