Feeds

Outsourcing fingered as UBS cops £30m fine

Rogue trader should have been spotted in outsourced report

Top three mobile application threats

The perils of outsourcing have again come under the spotlight after regulators investigating the $US2.3bn loss at Swiss bank UBS pointed to key risk management failings at a third party provider based in India.

The FSA and Swiss regulator FINMA launched a joint investigation into UBS in September 2011 after it came to light that rogue trader Kweku Adoboli had incurred huge losses because he was allowed to make unauthorised trades from the London office of the bank.

The FINMA report (via PTI) explains that the bank’s operations team was responsible “for ensuring the timely confirmation of trades with deferred settlement terms”. These trades were listed on the “T+14 report” maintained by an unnamed outsourcing provider.

The report goes on to reveal that one of the main ways Adoboli hid the true risk exposure of his activities was by generating fictitious trades with deferred settlement dates on the Exchange Traded Fund (ETF) desk where he worked.

It added the following damning conclusion:

Deferred settlement trades should have been identified on the T+14 report. However, this report was non-operational between May and November 2009, and from November 2010 to September 2011 shortly before discovery of the Loss)…

The purpose of the T+14 report was to identify deferred settlement trades, as these posed a greater risk to the Bank than trades settling within the usual T+3 cycle. The importance of this report was not understood. The report failed twice, for extended periods of time, and the second failure of the report went unnoticed by UBS for approximately 10 months.

Although the outsourcing provider is clearly not solely to blame for what happened at the bank, its failings are painted as contributing factor and will call to mind other recent high profile cases from the financial world.

Back in August, New York State Department of Financial Services accused Standard Chartered of hiding $US250bn worth of secret transactions with Iran.

In a damning report, it blamed the UK bank for outsourcing key OFAC compliance processes to Chennai “with no evidence of any oversight or communication between the Chennai and the New York offices".

HSBC also came under scrutiny earlier in the summer after a US probe found issues with its own “offshoring reviewers in India”, who failed to spot issues regarding compliance with money laundering rules. ®

3 Big data security analytics techniques

More from The Register

next story
Dropbox defends fantastically badly timed Condoleezza Rice appointment
'Nothing is going to change with Dr. Rice's appointment,' file sharer promises
Audio fans, prepare yourself for the Second Coming ... of Blu-ray
High Fidelity Pure Audio – is this what your ears have been waiting for?
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Did a date calculation bug just cost hard-up Co-op Bank £110m?
And just when Brit banking org needs £400m to stay afloat
Sorry London, Europe's top tech city is Munich
New 'Atlas of ICT Activity' finds innovation isn't happening at Silicon Roundabout
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
Apple DOMINATES the Valley, rakes in more profit than Google, HP, Intel, Cisco COMBINED
Cook & Co. also pay more taxes than those four worthies PLUS eBay and Oracle
It may be ILLEGAL to run Heartbleed health checks – IT lawyer
Do the right thing, earn up to 10 years in clink
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.