Embarking On A Journey From “Surveillance” To “Detection”

Inappropriate conduct has cost the financial services industry a significant amount in direct losses, lawsuits, and fines since the last financial crisis. In response, banks have invested heavily in surveillance programs to identify employee misconduct manifesting via trading activity and electronic and voice communications. These programs are typically relatively simplistic and rules-based, and have often expanded over time to form a complex and inefficient web of firm-built and vendor solutions. While a radical transformation of existing surveillance programs would be quite difficult in the current environment, it is essential that financial institutions seriously consider and plan for what comes next, as it is clear that the status quo will not hold.

Many financial institutions face challenges across components of their capital markets-related surveillance frameworks, including current rules-based alert generation, lack of robust metrics, inefficient core processes, as well as sub-optimal underlying infrastructure. We recommend a strategic transition from the current rules-based approach towards a more dynamic, integrated, and conduct-oriented detection process. This strategy should be broader than selecting among new vendors, it should include investment in the human and technological capacity to enable financial institutions to more dynamically respond to emerging risks and more effectively and efficiently identify misconduct.

We recommend investment in two key capabilities to propel institutions towards this future state:

  1. Invest in an integrated data management environment: invest in data sourcing and data management capabilities to ensure robust, accurate, and up-to-date information is continually available as the basis for analytics.
  2. Establish a Compliance Intelligence Unit: set up a specialist team to analyze data for Compliance incidents and risks through both reactive and proactive means. The analysis performed by this team would be used to develop and update surveillance algorithms on a continual basis, and with a risk-oriented lens.

Embarking On A Journey From “Surveillance” To “Detection”