Cloud Business Logo - white

Success stories

Our customers come in all shapes and sizes.

We work with organisations from all walks of life, with different ambitions and requirements. Explore how we’ve helped them reimagine everyday, and align technology with their culture and business goals.

The importance of customer-led IT service desk teams

What are the advantages of a customer-led IT service desk, and how do you know you're getting one from your Managed Service Provider? Answers here.
View case study >

6 risks to address when outsourcing IT services in the banking sector

What are the risks that banking firms need to address when outsourcing IT services? Read our blog to find out and for key steps to evaluate the risks.
View case study >

The importance of customer-led IT service desk teams

A key differentiator between IT service desk providers is how successfully they embed themselves into your organisation, and build strong working relationships with your employees, IT team and other users.

The value this provides should not be underestimated: reducing incidences and ensuring that any issues are addressed in a way that is optimised to reduce downtime to your individual business systems and operation. 

In this post I thought I would outline the processes we use at Cloud Business to build customer relationships and provide an IT service desk that meets different organisations’ bespoke requirements.

Find out how much outsourcing your IT service desk would cost. Get a quote here >

Customer led IT service desk providers

At the heart of our on boarding and transition process is culture training for our IT service desk analysts. This is so that they understand exactly how our clients’ IT infrastructure, systems and applications impact on their business, and therefore can take a proactive approach to ensuring business continuity.

If you’re weighing up the pros and cons of different IT service desk providers, I would recommend requesting information about the following key points to get an idea of how customer-led their service desk actually is:

  1. Matching IT service desk teams to the clients’ technology estate

Ask how IT teams are assigned to each client. Is it a one-size-fits all approach or do they ensure that analysts with specific skillsets and expertise handle their client accounts? The latter approach will ensure that both the transition process and on-going support will be streamlined with your IT specification. Also will you be assigned a named Service Delivery Manager – a first point of contact if you need to discuss your service or specific issues? One of the key reasons clients move their service desk to UKN Group is because of a lack of continuity with other providers, especially those with a high turnover of staff.

  1. Business overview

Providers who are customer-led will be hungry for information about your organisation so they can tailor their service to your needs. This will not only include information about the key applications the business uses, but should look at how these are used day-to-day and week-to-week. Look for an IT service desk provider who takes a proactive approach that will help them manage demand and pre-empt issues before they become a problem.

  1. Culture and philosophy

We believe that it’s important that our IT service desk analysts really embed themselves in our clients’ organisation so that we can deliver a service that is aligned with our clients’ core business objectives, ethos and values. This involves client ‘culture training’ that we initiate with the support of the client to ensure ourteam become part of their extended team.

  1. Technical training

No IT service desk provider should be happy to take on your existing systems and applications without some kind of training. While service desk analysts will already have relevant skillsets and experience, they will still need customer-specific training. This normally involves the customer passing on relevant documents and, where appropriate, Teams or conference calls to further their knowledge.

  1. Knowledge bank

IT service desk providers should be continually updating their knowledge and have a knowledge bank that provides support for their teams, tailored to each specific client. They should also be interested in any resources their clients can provide that can help them deliver an excellent service. You may also want to find out whether they provide resources for their clients too, such as user guides and other IT information.

  1. Tailoring the service

It’s all in the detail. To integrate your service desk with other areas of your business and deliver great customer service, the provider should be interested in offering a tailored service. For example setting up a dedicated phone line, dedicated voicemail messages, tailored greetings for when analysts answer the telephone, or even dedicated email signatures and email addresses.

  1. Service review meetings

Finally, look for a provider who wants to build their relationship with you and provides the channels for regular communication. This starts with knowing who the IT team is that supports your organisation and may involve site visits to meet with key stakeholders. Ask potential providers about the transition period and what to expect in terms of updates and regular meetings to ensure that this is kept on track. Also find out what happens once the service is live; how often are service review meetings and will the provider be proactive in advising your business on issues such as improving IT performance, security and other IT factors?

I believe that it’s important to find an IT service desk provider who wants to form a long-term relationship / partnership with your organisation. One that will provide a flexible and scalable solution that can be tailored to your individual requirements and goes out of their way to understand your business. So when comparing different providers bear in mind the points above to help you decide whether they are a customer-led provider or not.

View Case Study

6 risks to address when outsourcing IT services in the banking sector

You might not expect a blog post about the risks of outsourcing IT services from a service provider. But I believe that it is very important that all parties understand the potential risks involved, specifically in the banking sector.

With this understanding we can all take precautions to mitigate any risk, starting with a risk evaluation.

Risk evaluation by the Bank

The working group on Information Security, Electronic Banking, Technology Risk Management and Cyber Frauds has suggested the following three steps to mitigate risks:

  1. Identification of the role of outsourcing in the overall business strategy and objectives aligned with corporate strategic goals.
  2. Comprehensive due diligence on the nature, scope and complexity of outsourcing it services to identify the key risks and risk mitigation strategies – such as security practices and environment control of the service provider.
  3. Analysis of the impact of such arrangement on the overall risk profile of the bank and whether adequate internal expertise and resources exist to mitigate the risks identified.

Find out how much outsourcing IT support would cost your organisation, use our cost calculator here >

Risks involved in outsourcing IT Services by the bank

In my experience working with financial institutions and banking clients, the following are the most commonly identified risks associated with outsourcing IT services.

  1. Strategic risk – business conduct of the service provider can be against the strategic goals of the bank.
  2. Reputation risk – poor services of the service provider could be harmful for the reputation of bank and will harm customer relationships.
  3. Operational risk– technology failure, inadequate infrastructure or any error in providing IT services by the service provider.
  4. Legal risk – potential for a case of non-compliance with the privacy, consumer and prudential law.
  5. Country risk – due to political, social climate in the country in which service is outsourced.
  6. Contractual risk – risks related to compliance with the terms of the contract between service provider and the bank.

Materiality of outsourcing

The Bank also needs to assess the materiality of outsourcing to ascertain whether an outsourcing arrangement is material to the business context or not. This will mitigate risk and ensure better control when outsourcing it services.

Materiality of the services outsourced can be determined on the basis of criticality of service, process, or technology to the overall business objectives.

Criteria that can be considered in determining the materiality of proposed outsourcing including:

  • Size and scale of operations which are outsourced,
  • Potential impact of outsourcing on parameters such as cost of outsourcing as a proportion of total operating costs, earnings, liquidity, solvency, funding capital, risk profile, among others, for the Bank,
  • Nature of functions outsourced,
  • Extent of control and oversight exercised by the bank on vendor managed processes – the ability of bank staff to influence day to day operations and decision making or to exercise sufficient oversight over the day to day activities performed by outsourced providers,
  • Degree of control exercised by banks on outsourced entities, regardless of a conglomerate entity structure,
  • Impact on data privacy and security – whether access to customer data has to be extended to staff of the service provider,
  • Whether the bank has adequate flexibility to switch service providers, so that the risk of being attached to a single service provider is adequately mitigated and the aggregate exposure to a single service provider.

Once a decision has been made about outsourcing some or all of the Bank’s IT services, and the risks have been properly evaluated, it is essential that the Board and Senior Management understand their responsibilities to the bank.

Role of the Board and senior management

While an institution may delegate its day-to-day operational duties to a service provider. The responsibility for effective due diligence, oversight and management of outsourcing it services and accountability for all outsourcing decisions continue to rest with the Bank, Board and senior management.

The board and senior management have the responsibility to institute an effective governance mechanism and risk management process for all outsourced operations.

The Board is responsible for:

  • Instituting an appropriate governance mechanism for outsourced processes, comprising of risk based policies and procedures, to effectively identify, measure, monitor and control risks associated with outsourcing in an end to end manner,
  • Defining approval authorities for outsourcing depending on nature of risks in and materiality of outsourcing,
  • Assessing management competencies to develop sound and responsive outsourcing risk management policies and procedures commensurate with the nature, scope, and complexity of outsourcing arrangements,
  • Undertaking a periodic review of outsourcing strategies and all existing material outsourcing arrangements.

Senior management is responsible for:

  • Evaluating the risks and materiality of all prospective outsourcing based on the framework developed by the Board,
  • Developing sound outsourcing policies and procedures for implementation by Line Managers,
  • Periodically reviewing the effectiveness of policies and procedures,
  • Communicating significant risks in outsourcing to the Board on a periodic basis,
  • Ensuring an independent review and audit in accordance with approved policies and procedures,
  • Ensuring contingency plans have been developed and tested adequately.

Selection of service provider by the Bank

Having carried out risk evaluation measures and with the full support of the Board and senior management, the next step is to identify a service provider who will perform the outsourced function.

Proposals submitted by service providers should be evaluated in the light of the organisation’s needs, and any differences in the service provider proposals as compared to the solicitation should be analysed carefully.

To access the capability of the service provider to comply with the outsourcing agreement, it is important to carry out due diligence. Due diligence should involve an evaluation of all information about the service provider including qualitative, quantitative, financial, operational and reputational factors, as follows:

  • Past experience and competence to implement and support proposed activities over the contractual period,
  • Financial soundness and ability to service commitments even under adverse condition,
  • Business reputation and culture, compliance, complaints and outstanding or potential litigations,
  • Security and internal control, audit coverage reporting and monitoring environment, business continuity management,
  • External factors like political, economic, social and legal environment of jurisdiction in which the service provider operates and other events that may impact service performance,
  • Business continuity arrangements in the case of technology outsourcing,
  • Due diligence for sub-service providers,
  • Risk management, framework, alignment to applicable international standards on quality / security / environment, etc., may be considered,
  • Secure infrastructure facilities,
  • Employee training, knowledge transfer,
  • Reliance on and ability to deal with sub-contractors.

IT services that a bank can outsource

In our experience here are the most common IT services that a bank can outsource:

  • Front line IT support – Service/Support Desk,
  • Activities such as Debit card printing and dispatch, verifications, etc.,
  • Technology Operations,
  • Banking Operations,
  • Cash Management and Collections,
  • Fiduciary and Trading activities,
  • Technology Infrastructure Management, Maintenance and Support,
  • Application Development, Maintenance and Testing,
  • Transaction Processing including payments, loans, deposits,
  • Sourcing, Leads Generation,
  • Customer Service helpdesk / call centre services,
  • Marketing and Research.

While there are clear benefits in the outsourcing of IT services to an external provider, risk evaluation is fundamental and you should expect any IT service provider to be focussed on this.

With the right IT service provider a bank can enhance its efficiencies in operations, by increasing the ability to acquire and support current technology; and allow management to focus on key management functions – such as better customer service and other core services.

If you have any questions concerning risk evaluations or outsourcing IT services in the banking sector, please get in touch.

Service desk quote
View Case Study

Cloud Business Logo - white
Microsoft Gold Partner Logo - Cloud Business

Cloud Business Limited
8 North Street
Guildford
GU1 4AF

0845 680 8538
hello@cloudbusiness.com

Twitter Linkedin-in
Microsoft Gold Partner Logo - Cloud Business

2023 © Cloud Business Limited
Registered Company in England and Wales 06798438

Technology

Get connected

Work smarter

Stay safe

Who we help

Success stories

Legal

Public sector

Who we are

About us

Leadership team

Technology partners

Work for us

Resources

Blog

Knowledge hub

Get in touch

Contact us