Why M&A-Intensive Enterprises Need a Robust Technology Integration Strategy

21-09-2021| treasuryXL | TIS |

This article evaluates how the success of long-term M&A activity on the part of large enterprises is dependent upon their ability to integrate and connect the pre-existing technology stacks of newly acquired subsidiaries with their broader infrastructure. Chiefly, we evaluate how enterprises that regularly establish new subsidiaries and entities across the globe can ensure that the various finance, treasury, and banking solutions leveraged by these companies before the acquisition can be integrated and connected in a cost-effective and optimized fashion.

M&A Activity Remains a Top Priority for Global Enterprises

Although merger and acquisition (M&A) activity is fairly common in today’s business environment, it is typically large, global enterprises that leverage the strategy most frequently.

For organizations with billions in revenue and a steady stream of new investment, taking advantage of new market opportunities is often best achieved by acquiring companies that have already proven themselves successful in the field. In the case of the world’s largest enterprises like Microsoft, Apple, and Facebook, M&A activity comprises a significant portion of overall growth. In fact, Microsoft alone has acquired more than 216 companies since their founding, and Apple acquires a new company at an average rate of once every four weeks. Across other industries like staffing and HR, Fortune 500 firm ManpowerGroup has acquired four new companies in the past five years and 15 total companies over the past few decades.

But while an M&A-intensive business strategy might be advantageous for eliminating competition, increasing revenue, and maintaining growth, there are a variety of challenges that must be confronted in order for the model to prove successful in the long-term.

Of course, any M&A project undertaken by a company will face obstacles, most of which revolve around how to best integrate the employees, products, systems, culture, and customers of the acquired company into the acquiring enterprise. These challenges are typically what executives and business leaders focus on most during M&A projects, and for good reason. If employees and customers are dissatisfied with how the acquisition is managed or if the acquired company’s product line stagnates, it can quickly turn the entire project on its head and substantially hinder future profits and revenue.

However, in today’s digitally-oriented business landscape, the above factors are not the only concern for M&A-intensive enterprises. Instead, one of the core challenges confronting modern acquisition projects lies along the technology front.

This is particularly true when it comes dealing with finance, treasury, and banking technology.

Why is Financial Technology Complexity so Common for M&A-Intensive Companies?

When evaluating the operations of enterprises that regularly undertake new acquisitions, it’s easy to see how technology complexity can manifest itself.

Let’s quickly walk through a sample scenario.

Looking specifically at finance and treasury technology, suppose that a U.S.-based manufacturing firm decides to acquire an emerging competitor in Asia. Also suppose that this Asian competitor has been operating independently for several decades and has its own spread of regional entities, as well as a pre-existing set of back-office platforms and IT solutions. As such, the company is already using an ERP, TMS, and AP system, as well as a globally distributed network of banks and bank accounts.

Going a step further, now consider the diverse range of currencies, payment formats, and financial networks that the Asian enterprise uses compared to the acquiring U.S. company. Also, because the compliance arena in Asia is managed through a diverse and multifaceted set of jurisdictions, conducting financial operations in the region will require a unique approach to managing regulatory and sanctions processes, as well as data and payment security.

For the acquiring U.S. company, connecting the various systems and networks used by the Asian subsidiary with their broader technology stack will be no easy feat. To start, some of the systems in place at the Asian subsidiary may be hosted locally or even running on older, unsupported versions. If modern cloud solutions have not been adopted, then integration via open APIs becomes highly unfeasible and it will likely require extensive IT support to establish the connections. The same is true for integrating the various bank channels and payment formats in use by the Asian subsidiary into the enterprise’s global financial architecture. Accommodating the various risk, regulatory, and compliance measures in place across Asia will require even more support, as well as collaboration with multiple legal and banking teams.

The end result being?

Although a single acquisition of this scale may be manageable for a global enterprise with significant resources, those that consistently undergo new acquisitions will likely experience much more difficulty. This is because internal IT teams rarely have enough bandwidth (or budget) to successfully establish all of the required connections for every system. Instead, what often happens is after a few months or years, IT is forced to divert their attention from one acquisition to another, thereby letting a portion of outstanding system connections fall to the wayside.

Ultimately, this creates an environment where much of the data and information captured at the local or “entity” level will sit idle and siloed from the rest of the enterprise. Instead of real-time data access across their individual units and subsidiaries, finance and treasury teams at HQ will have to rely on manual submissions from field personnel to ascertain data. In some cases, it may take weeks for this information to be received, by which time it is often outdated.

In the long run, the impact of these technology limitations has far-reaching consequences for the broader enterprise, especially if such issues are present across each new subsidiary or locality that they acquire.

What are the Main Problems That This Lack of System Integration & Connectivity Cause?

Thinking through the above M&A scenario, suppose that a similar conundrum impacts each (or most) of the M&A projects that an enterprise undertakes. Eventually, the lack of automated connectivity and control between the enterprise’s HQ and each of their subsidiaries will result in significant financial issues, particularly in the below areas:

  1. Liquidity Management: If financial data related to cash positions and balances across a subsidiary and its underlying banks and accounts cannot be effectively transmitted to an enterprise’s HQ, then everything from cash forecasting and cash repatriation to short-term investing and risk mitigation will be impacted. If the enterprise does not know the exact amount of funds available across each entity, then it cannot effectively plan ahead to take advantage of investment or tax savings opportunities. Over time, losing out on these opportunities due to gaps in data quality and reporting can cost an enterprise millions of dollars every year.
  2. Payments Management: For enterprises that cannot accommodate the range of payment systems and formats in use by their subsidiaries or that struggle to connect with their bank channels and networks, a variety of pain points will occur. Common issues include a reliance on outdated formats that limit data quality and security, delays in payment processing that impact the timeliness of transactions and also constrain employee bandwidth, and an increase in operational costs for continuing to support legacy processes and channels. Additional security and compliance issues may also manifest themselves, as highlighted below.
  3. Security & Fraud Prevention: Without ample visibility into the payment processes and cash positions at each of a company’s subsidiaries or any centralized window for viewing this activity in real-time (or at least same-day), it becomes monumentally more difficult to identify and prevent fraud from occurring. If payments are initiated in disparate platforms at the local level and no overarching control or transparency is provided at the HQ level, then the threat of both internal fraud and external fraud increases exponentially.
  4. Compliance & Regulation: Due to the diversity of data management protocols, financial regulations, and sanctions policies that exist across each world region, a lack of payments standardization within an enterprise can result in increased legal and regulatory risk and also jeopardize their reputation and standing. Examples of data and payments compliance protocols for which non-compliance can result in severe penalties include OFAC sanctions in the U.S., GDPR data policies in Europe, and the recently introduced Personal Information Protection Law (PIPL) in China.
  5. General Financial Execution: If financial data is not automatically flowing between an enterprise and its subsidiaries, then every department and stakeholder with a need for this data is impacted. Accounting will be unable to track ledgers or financial statements, legal will struggle to manage regulatory and compliance issues, treasury will be hindered in their liquidity and payment processes, and the C-suite will lack the high-level financial data they need to make strategic decisions.

Although the above financial technology challenges present serious hurdles for M&A-intensive enterprises, there are solutions that can be put in place to alleviate the strain. One such solution includes the adoption of a modern Enterprise Payment Optimization (EPO) platform.

How Can the Complexity Caused by Global M&A Activity be Simplified & Managed?  

Because of the diverse systems landscape and limited IT bandwidth that often exists across M&A-intensive enterprises, achieving global visibility and control over finance and treasury operations requires a unique approach to connectivity and integration. In recent years, one strategy that has grown increasingly popular involves the adoption of an enterprise payment optimization (EPO) platform.

Modern EPO platforms are typically cloud-based solutions that sit above the other systems in an enterprise’s financial technology stack and manage connectivity across all their various back-office, banking, and 3rd party systems, including those at their entities and subsidiaries. Rather than connect every platform used within the enterprise to every other system, each solution need only connect to the EPO platform instead. This drastically simplifies the process of integrating new solutions with an enterprise’s tech stack and also automates the process of transmitting payments and financial data between any system that is connected to the EPO platform, including those used by different entities and departments.

Although the adoption of an EPO platform requires some up-front legwork, using a vendor like TIS ensures that the complexity of connecting to banks and various internal systems is almost entirely outsourced. This means that formerly difficult and time-consuming tasks that were a drag on internal IT teams (such as configuring and maintaining the links between new entity systems and HQ ERPs, HR systems, and TMSs) are now managed by the EPO vendor. As payment formats evolve or new regulations require changes in integration, EPO vendors like TIS automatically handle the upgrades and also manage the addition of new countries, banks, and users to an enterprise’s network as growth and expansion dictate over time.

Ultimately, by connecting all of the various banks and systems that comprise your financial technology stack to an EPO platform, you effectively ensure that regardless of where an entity is located or what local systems are being used, the data and information stored on their platforms is never left isolated or unaccounted for. And as older or outdated enterprise payment solutions are eventually replaced by newer and more upgraded systems, connecting them to the EPO platform in a similar fashion will ensure ongoing cohesion and connectivity across your global networks, even as various technology overhauls and system migrations occur at specific entities within the enterprise.

Once this type of EPO platform has been adopted, the ensuing benefits can be felt immediately by all enterprise stakeholders. Company-wide visibility to global cash balances drastically improves, liquidity management protocols become more streamlined, payments compliance and security features are standardized across all departments and entities, and the enterprise’s overall payments execution workflows become more automated and controlled.

Today, these capabilities are exactly what TIS is offering enterprises through our EPO technology suite.

Why is TIS the Ideal Solution for Simplifying M&A-Induced Technology Complexity?

TIS’ Enterprise Payment Optimization platform is a global, multi-channel and multi-bank connectivity ecosystem that streamlines and automates the processing of a company’s payments and subsequent reporting across all their global entities, banks, and financial systems. By sitting above an enterprise’s technology stack and connecting with all their back-office, banking, and 3rd party solutions, TIS effectively breaks down department and geographic silos to allow 360-degree payments and cash visibility and control. To date, the ~200 organizations that have integrated TIS with their global technology stacks have achieved near-100% real-time transparency into their payments and liquidity. This has benefitted a broad variety of internal stakeholders and has also enabled them to access information through their platform of choice, since the data that passes through TIS is always delivered back to the originating systems.

This systematically controlled payments workflow is managed by TIS for both inbound balance and transaction information and outbound payment instructions. Data can be delivered from any back-office system via APIs, direct plug-ins, or agents for transmission through TIS to banks and 3rd party vendors. No matter where you operate, TIS provides global connectivity by creating and maintaining compatibility with your required formats, channels, and standards so that organizations can connect with virtually any bank in the world.

Because of the deep connections that TIS maintains with internal systems such as ERPs or TMSs, external banks, and 3rd party vendors / service providers, the process of managing payments is simplified for every internal stakeholder. C-suite executives, treasury, accounting, AP, legal, HR, and other key personnel can access whatever financial data they need, exactly when they need it. And by automating this flow of information for both inbound and outbound payments, TIS provides the control and flexibility that enterprises need to function at their highest level.

Ultimately, the extensive experience and unparalleled integration capabilities provided by TIS enable enterprises to streamline their methods for managing payments and data across each entity and subsidiary. This has proven vital for a variety of TIS’ globally diverse clients, including Fortune 500 firms like ManpowerGroup and international NGOs like IFAW. And as these organizations add new companies, localities or seek to replace the underlying systems in use across various regions, TIS is there to help them manage the new integrations and connections, thereby ensuring a seamless transition and constant control over global payments and information.

In the digital world of enterprise payments, TIS is here to help you reimagine and simplify. For more information about how TIS can help you transform your global payments and information processes, please refer to the below resources.

About TIS

TIS is reimagining the world of enterprise payments through a cloud-based platform uniquely designed to help global organizations optimize outbound payments. Corporations, banks and business vendors leverage TIS to transform how they connect global accounts, collaborate on payment processes, execute outbound payments, analyze cash flow and compliance data, and improve critical outbound payment functions. The TIS corporate payments technology platform helps businesses improve operational efficiency, lower risk, manage liquidity, gain strategic advantage – and ultimately achieve enterprise payment optimization.

Visit tis.biz to reimagine your approach to payments.

 

How global enterprises can finally end the cycle of redundant IT-related payments projects

30-08-2021 | TIS |

This article begins by examining the current state of enterprise treasury and finance technology implementations, including the standard project timelines, core challenges, and ultimate outcomes. This is followed by an analysis that outlines an improved methodology for enterprises to follow as they seek to ensure the global optimization and standardization of their payment systems, workflows, and technologies.

Modern enterprises are stuck in an endless cycle of payment technology upgrades

 

For enterprise finance and treasury professionals, why does it feel like the road to payments automation and technology optimization is never complete?

If you’re an active practitioner, you’ve likely asked yourself this very question (or at least a variation of it) within the past few years. Perhaps it was during a very long and arduous TMS or ERP implementation, a major acquisition of a new entity, or a rationalization of your global bank relationships. In any case, your musings were probably due to the fact that these types of projects have become an all-too-regular occurrence (and a subsequent thorn in the side) for enterprises around the world.

As recently as 2018, data showed that the average corporate timeline for a SaaS-based TMS implementation was 10-18 months. Technology overhauls involving larger and more widely used systems, such as global ERPs, may have taken up to 3-5 years. And although these respective timelines continue to grow shorter as cloud services and other innovations rise to the forefront, projects of this magnitude still represent a massive undertaking.

During these periods, it’s common for practitioners to wind up collaborating with dozens of internal and external stakeholders, joining hundreds of calls, and spending countless hours training, testing, and configuring the new system – all while continuing to perform their core list of daily responsibilities.

The ultimate result being?

Although seasoned professionals will tell you that every implementation is different, let’s think about the bigger picture. Of course, the results of each specific project can vary drastically, sometimes for reasons far outside of anyone’s control. There may be budget constraints, bandwidth constraints, technical limitations, and even geopolitical or environmental obstructions. Employee turnover may cause undue delays as well. And yet other times, the entire project may flow smoothly and on budget from start to finish.

But looking beyond the individual success or failure of any single project, how long after each project’s completion will it be until a new technology implementation is required?

One year? Two years? Five years?

Or, in the case of global enterprises, perhaps you are simultaneously working on numerous financial technology implementations all at once, and the completion of one only results in your reprioritization of another.
Unfortunately, this endless cycle of new technology and payment upgrades is what most enterprise treasury and finance teams find themselves dealing with today, and it has become one of the primary sources of confusion and headache for global companies.

Let’s quickly evaluate the underlying complexities in more detail.

Why does global expansion often lead to excessive payments complexity?

 

Although domestic companies operating in a single country or region undoubtedly face their own degree of technology and payments complexity, the level of difficulty associated with managing a global network of systems, data, and information is exponentially greater.

What are the main reasons for this?

To begin, consider the sheer volume of payments being made across a global enterprise, including all the various locations, currencies, and payment types. For the largest companies, there may be millions of inbound customer payments occurring every day through a combination of cash, check, card, and account-to-account options like ACH and SEPA. At the same time, an equally large and diverse variety of outbound payments must be generated by the enterprise to compensate employees, vendors, and partners. And every time a new entity, industry, or market vertical is added to the mix, these volumes intensify.

Adding further complexity, consider how the payment channels and formats in use across each world region can vary broadly as well. Just to name a few, there is EBICS in Europe, NACHA in North America, SWIFT for international payments, and H2H (direct) connections that may be utilized globally. Local variations of these channels also exist in other regions, and going a step further, each of the specific banks used by an enterprise will have its own connectivity preferences for payments and information reporting. Individual clients, partners, and vendors may also request payment data to be created in specific formats such as SWIFT MT, ISO 20022, EDI, BAI, and BAI2.

Measure Payments Complexity

Finally, the diverse compliance and security standards that exist across various countries require unique filtering and monitoring workflows to be established in different regions. Although U.S. companies may be familiar in dealing with OFAC sanction lists, FBAR statutes, and data privacy laws like GDPR, the regulatory landscape in Asia, Africa, and the Middle East looks quite different. In fact, each specific country within these regions might have its own distinct set of rules and restrictions, and these protocols must closely adhere to any time that payments data and technology solutions are managed locally.

But despite all these challenges, perhaps the largest source of headache and confusion for enterprise practitioners stems from attempting to manage a disparate and unintegrated web of back-office payment solutions.

What do we mean by this?

The back-office conundrum: too many solutions and not enough integrations

 

In 2016, research from Fortune highlighted that global enterprises were undergoing merger and acquisition (M&A) activity at incredible rates, with the five most active companies absorbing 122 new entities between them on the year. Data from more recent years showcases a similar story, and at the same time, organic growth is also driving these enterprises to open new offices, enter into new markets, and expand into new world regions.

The challenge?

As these new acquisitions and locations ultimately go on to form new company entities and subsidiaries, the underlying systems used at each locality must be connected to the enterprise’s main technology stack in order to facilitate data transmission, cash and payment visibility, and other core financial functions. But for enterprises with hundreds of already-existing entities and a steady stream of new acquisitions, consider how many systems must be connected to the enterprise’s core technology stack each year. Also consider the amount of maintenance, upkeep, and investment that managing this global network of technology requires. And finally, reflect on how each of these systems will gradually become a legacy over time and need to be replaced as new technologies and solutions rise to the forefront of the industry.

We know from experience that not all of these global systems are able to connect or integrate with one another. Perhaps some solutions are too old, the budget too insufficient, or IT bandwidth is stretched too thin to prioritize the development of proper connections. As a result, it may take days, weeks, or even months for the data and information contained within these local systems to be made available across the entire enterprise. And if these siloed systems are not isolated occurrences but actually comprise a significant portion of the enterprise’s back-office infrastructure, then almost every single financial and payments-related function will be impacted.

EPO Payments Complexity

Without automated connectivity and integration, visibility to cash balances and payment statuses will take a hit. Creating a standardized compliance and security process will be almost impossible, and stewarding the company’s liquid assets will be hampered by a lack of transparency to global data.

Today, these siloed entity technology stacks and legacy systems are often the unintended result of sustained business growth. In fact, it’s almost natural for them to occur. However, with today’s speed of change in commerce and technology, it is no longer an option to leave each of these functions, systems, and geographies unconnected. Siloes trap data, reduce communication and visibility, and ultimately stifle growth. And in the world of payments and technology, a lack of visibility and automation will directly impact liquidity, profitability, and exposure to risk across the entire enterprise.

So then, for enterprises that find themselves in this situation, what is the best approach to optimization?

Introducing a new framework for managing enterprise payment maturity

 

In a perfect world, enterprises that need to connect all of their global technology and payments solutions, including bank platforms and 3rd party solutions, would simply integrate every system with every other system. This would effectively enable complete unification and connectivity across the enterprise’s entire network, and data could flow immediately and seamlessly across any department, entity, and location for real-time visibility and control.

Of course, active practitioners understand how unrealistic this approach would be. In reality, it would require an almost endless variety of custom integrations to be established across each internal system and potentially hundreds of banks and external solutions. Despite innovations surrounding APIs and other connectivity methods, this task would still be insurmountable, from both a budgetary and bandwidth perspective. And even if an enterprise did somehow manage to connect all these solutions together, the maintenance and upkeep required to sustain each integration would require a whole army of dedicated IT personnel and even more investment.

An alternative solution?

Given the fragmented systems landscape that exists across most global enterprises, the most effective way to achieve a holistic view of (and control over) every siloed process, system, and geography is by implementing a single Enterprise Payments Optimization (EPO) layer that sits above all other solutions in an enterprise’s technology stack. Rather than connect every platform with every other, each solution need only connect to the EPO platform instead. This drastically simplifies the process of integrating new solutions with an enterprise’s tech stack, and also automates the process of transmitting payments data between any system that is connected to the EPO platform, including those used by different entities, offices, and departments.

Although the adoption of an EPO platform requires some up-front legwork, using a vendor like TIS ensures that the complexity of connecting to banks and performing other technical functions is almost entirely outsourced. This means that formerly difficult and time-consuming tasks that were managed by internal IT teams (such as configuring and maintaining the links between external banks and internal ERPs, HR systems, and TMSs) are now managed by the EPO vendor. As formats evolve or new regulations require changes in integration, EPO vendors like TIS automatically handle the upgrades and also manage the addition of new countries, banks, and users to an enterprise’s network as growth and expansion dictate over time.

Once this type of implementation has been performed, the EPO platform can become the sole channel through which all company payment workflows and data streams are managed and controlled.

TIS Eliminates Global Complexity

As payment instructions or files from ERPs and other back-office systems pass through an EPO platform, they can be quickly transferred to the appropriate bank or end party. In addition, data can be shared with 3rd party vendors and other companies and partners within the network. Subsequent bank statements and reports can also be transmitted from the bank through an EPO platform to the various internal departments and systems where payment instructions are originating from.

Ultimately, the information stored on an EPO platform serves as the single source of truth for payments data across all corporate departments, subsidiaries, and geographies, and it prevents enterprises and their IT departments from having to manage a tangled mess of disparate back-office connections.

EPO solutions provide the perfect option to support ongoing enterprise growth and expansion

 

While the EPO orchestration strategy outlined above is very effective at breaking down geographic and entity-specific siloes, it is also the ideal platform for fostering a strategic, long-term approach to enterprise payment maturity.

Today, the technology landscape continues to evolve rapidly, as do the payment solutions and methods used by global enterprises. In the current era, this means that approximately once every decade, a company’s existing technology infrastructure will need to be overhauled. However, because various internal solutions are installed at different times and for different purposes, the upgrades and maintenance schedules for these solutions are rarely conducted in an organized and timely fashion. Sometimes, these upgrades are not completed at all. And as a result, it’s very easy for an “optimized” payment workflow and the underlying technology stack to start falling behind the curve.

This is why adopting an EPO orchestration layer is so essential for maintaining a constant state of consistency and control.

By connecting all of the various internal systems that comprise your global payments technology stack to an EPO platform, you effectively ensure that regardless of where an entity is located or what local systems are being used, the data and information stored on their platforms is never left isolated or unaccounted for. And as older or outdated enterprise payment solutions are eventually replaced by newer and more upgraded systems, connecting them to the EPO platform in a similar fashion will ensure ongoing cohesion and connectivity across your global networks, even as various technology overhauls and system migrations occur at specific entities or locations within the enterprise.

So, if you’re a treasury or finance professional working for an enterprise with significant process, system, and global complexity — complexity that is ultimately hindering your ability to operate efficiently — ask yourself whether a new approach to payments technology could be the answer.

And if that answer is yes, we invite you to consider TIS and our newly introduced Enterprise Payment Optimization (EPO) platform.

About TIS

TIS is reimagining the world of enterprise payments through a cloud-based platform uniquely designed to help global organizations optimize outbound payments. Corporations, banks and business vendors leverage TIS to transform how they connect global accounts, collaborate on payment processes, execute outbound payments, analyze cash flow and compliance data, and improve critical outbound payment functions. The TIS corporate payments technology platform helps businesses improve operational efficiency, lower risk, manage liquidity, gain strategic advantage – and ultimately achieve enterprise payment optimization.

Visit tis.biz to reimagine your approach to payments.

 

Strength in Numbers: A Community-Based Approach to Fighting Digital Payments Fraud

11-08-2021 | TIS |

This article provides a modern review of the tactics used by cyber criminals to target enterprises with fraudulent schemes and also evaluates the primary methods used by companies for defending against digital payments fraud. This is followed by an introduction to TIS’ innovative Payee Community Screening (PCS) solution, which addresses payments fraud on a global scale by curating a community-based network of trusted beneficiaries, vendors, and bank account information that enterprises can use to verify the legitimacy of their outbound payment instructions.

Enterprise Payments Fraud in 2021 is More Elaborate & Subversive than Ever Before

Within the past year alone, thousands of finance and treasury practitioners across the world have learned through bitter experience that digital payments fraud is rarely orchestrated by your average, everyday criminal.

Rather, the vast majority of today’s technology-oriented attacks, particularly those that target large enterprises, are led by sophisticated, well-funded, and innovative fraudsters.

In many cases, these software-savvy perpetrators are working on behalf of state-sponsored actors or underground “black-hat” organizations. And because these groups are well-organized and well-funded, they can provide members with the latest technology and training. Ultimately, this has led to rapid digital innovation within the criminal underworld, and subsequently to a growing frequency of highly-orchestrated payments fraud attacks against the corporate environment.

Consisting primarily of software hacks or malware attacks, many of the most prevalent forms of fraud in existence today involve numerous layers of subterfuge and deception, which is necessary for bypassing the various security controls that organizations have in place. Common examples include the use of cleverly disguised Business Email Compromise (BEC) schemes, “Man-in-the-Middle” tactics, invoicing fraud, and the use of ransomware or other forms of “system takeover” fraud.

But of course, enterprises are not entirely helpless in defending themselves.

What Payment Security Tools Does a Modern-Day Treasury Group Utilize?

If you’re operating in a role with direct access or authority over an enterprise’s outbound transactions, you could probably name a broad number of tools at your company’s disposal for detecting and preventing payments fraud.

Some quick examples?

When initially establishing internal payment protocols, most companies will require clear segregation of duties between each stakeholder in the payment process. This includes dual or multi-user approval controls for executing, reviewing, and approving payments. Other standard security components, such as the use of encrypted Wi-Fi networks or VPNs, help restrict access to the enterprise’s digital software to only trusted sources. IP safe-listing tools provide even greater control over who can access these internal systems. As users log in, configuring multifactor authentication (MFA) tokens to be used in conjunction with standard usernames and passwords is another effective technique that prevents unauthorized users or personnel from accessing payment systems via stolen credentials. Biometric versions of these MFA tokens, such as fingerprint or retinal scanners, may be leveraged for even greater security. And finally, user auditing software is often adopted by companies to help monitor the activity of various personnel within their payment systems in order to detect suspicious activity, such as a login attempt from an unknown IP address, at an odd time of day, or from an obscure world region.

Treasury Payments Security

When all combined together with regular employee testing and training, these various security techniques have proven very effective for combating most forms of digital treasury and payments fraud in existence today. And in the years ahead, these tactics are expected to remain as core features of most enterprise’s fraud prevention strategies.

However, suppose that the criminals targeting your organization are not launching direct attacks against your internal payment systems or architecture, but instead decide to infiltrate the operations of your suppliers and partners.

Their reasoning?

Although your enterprise might have the appropriate defenses in place for preventing direct hacks and internal breaches, are your controls just as effective at identifying anomalous activity that is perpetrated through the guise of a trusted vendor?

For a surprising number of enterprises today, the simple answer is no.

Successful Fraudsters Learn How to Operate Outside the Purview of Enterprise Visibility

Although many of the fraud attacks that garner widespread media attention are those that result in millions or billions of losses in a single swoop, these are not the only types of attacks that organizations should be worried about.

In reality, many of the attempts perpetrated by criminals are not targeting billions of dollars. Instead, they focus on extracting smaller amounts of funds over time, often by disguising their activity through the lens of normal business operations.

Take, as an example, fake invoices submitted by criminals that are designed to mimic one of the thousands of vendor or supplier payments that a global enterprise makes every month.

Usually, vendors are submitting invoices to enterprises via email, an online e-commerce platform, or via an ERP system. Subsequent payments are then delivered from the enterprise to the various recipients whose invoices have been approved, usually as an account-to-account transaction that goes directly to the bank account listed in the invoice.

However, suppose that a criminal is able to infiltrate the email account, e-commerce platform, or payment system used by one of your vendors. And over time, the criminal monitors the activity and communication that occurs between this vendor and your enterprise and learns how to mimic the workflow, presentation, and delivery of new invoices for payment.

In this scenario, the criminal knows that your company is receiving hundreds, if not thousands, of new invoices from a variety of vendors every day. They also know the average dollar amount of each invoice delivered by particular vendors, as well as the frequency and timing of their submissions. And if an email account or e-commerce platform has been hacked, they have also probably been studying the language and messaging that the vendor uses to correspond with you.

After taking time to evaluate these invoicing and communication processes, the criminal will create a falsified invoice using the same email address or payment platform that you’re familiar with. The invoice will probably be for the same amount and to the same beneficiary that you’re used to paying, but with a slight variation to the underlying bank account details.

The typical result being?

Unless you are actively tracking and inspecting the vendor records, bank account numbers, and beneficiary details for EVERY payment initiated by your enterprise to your global network of partners and vendors, then catching these attempts will be incredibly difficult.

But if your company cannot catch this errant invoice the first time, then what is going to stop the criminal from submitting numerous invoices over and over, or even going on to target other vendors within your network and duplicating the process on a broader scale?

It might sound like an Ocean’s 11 heist on paper, but in reality, these types of attacks occur all the time. In fact, a single instance of invoice fraud cost Amazon nearly $20 million in 2020. Other forms of fraud, such as BEC schemes, cost a combined $12.5 billion for organizations in the same timeframe, and these numbers are not decreasing over time.

Instead, they are continuing to rise.

Introducing a New Way to Quickly Identify Suspicious or Fraudulent Payment Details

Although subversive types of fraud attacks like the invoice example above are difficult for large companies to identify, suppose there were a way to quickly scan all vendor and supplier payments in real-time against a global library of beneficiary and bank account data?

Going a step further, what if you could also scan outbound transactions being delivered to first-time vendors against a community ledger of payments data in order to verify that the underlying account details and remittance info have never been flagged as suspicious or fraudulent by other enterprises?

With this functionality, the threat of fraud being perpetrated through more obscure and subversive channels become much easier to identify, and they go a long way in protecting your enterprise against attacks that spawn through exposures related to your partners, vendors, and suppliers.

This suite of tools is exactly what TIS is now providing enterprise clients with our innovative Payee Community Screening (PCS) solution.

Developed in direct response to a noted increase in invoice and BEC fraud, TIS’ PCS network works by aggregating payments data across our trusted community of global enterprises and bank partners. As new payments are submitted by various enterprises through TIS, this module compares the underlying beneficiary and bank account information against a comprehensive record of all other transactions executed through the system, including those made by other enterprises in the network.

In practice, this validation process effectively protects against four fundamental threats:

  1. If you are making payments to a new beneficiary or bank account for the first time, an alert will be generated by the system warning you that an additional review of the information is recommended.
  2. If you are making payments to a beneficiary which is completely unknown to other members of the PCS network, then the payment is flagged and a review workflow is initiated.
  3. For new vendors that you are paying for the first time, if the invoice and payment details do not match what other enterprises in the network have used to pay the vendor (i.e. a different bank account number was provided to your enterprise than what was provided to other enterprises in the network), then the payment is flagged and a review workflow is initiated.
  4. If the beneficiary or bank account details provided in an invoice ever match with a known criminal, sanctioned, or otherwise fraudulent party, the payment is automatically flagged and a review workflow is initiated.

In this way, by inspecting every outbound payment initiated by your enterprise in real-time against a global library of payments information, enterprises can strengthen their security controls by accessing a much broader pool of data and information than what is available in-house. To date, TIS’ network has managed over 11 billion payments globally across 11,000+ banks and 15 million+ distinct beneficiaries, which makes our library of payments information virtually unparalleled in the market. And now with the addition of PCS to our solution suite, we can better protect our enterprise clients from fraud by confirming the validity of every outbound transaction they are attempting to make.

TIS Payee Community Screening

In an environment where subterfuge and deception are a criminal’s main assets, these community screening techniques are essential for ensuring that fraudsters cannot bypass your controls simply by infiltrating those of a different company within your network. They also ensure that as soon as fraudulent or suspicious payment info is identified by one enterprise, the data can be quickly shared across all other enterprises in the network for purposes of quickly halting subsequent payments to that account or beneficiary.

For TIS’ enterprise clients, these tools are already becoming a pivotal component of their core security structure, and we are excited to continue deploying the solution across more global enterprises in the months and years ahead.

Learn More About How PCS Can Bolster Your Treasury & Payments Security

Although no single tool should ever be relied upon to defend against all forms of fraud, it is strongly recommended that enterprises making hundreds or thousands of vendor payments every day undergo a thorough evaluation of their payment controls. More specifically, treasury and AP teams should take time to analyze whether the threat of invoice or BEC fraud leaves them exposed, especially if a vendor or supplier within their network is compromised.

For enterprises that identify gaps, we invite you to learn more about how TIS can help.

For more information about TIS’ PCS tool, the associated benefits, and the technical aspects associated with its architecture, download our latest factsheet. You can also request a meeting with one of our payment experts or learn more about the other security-related components of our solution suite.

Stay vigilant, stay safe, and as always, thank you for reading.

About TIS

TIS is reimagining the world of enterprise payments through a cloud-based platform uniquely designed to help global organizations optimize outbound payments. Corporations, banks and business vendors leverage TIS to transform how they connect global accounts, collaborate on payment processes, execute outbound payments, analyze cash flow and compliance data, and improve critical outbound payment functions. The TIS corporate payments technology platform helps businesses improve operational efficiency, lower risk, manage liquidity, gain strategic advantage – and ultimately achieve enterprise payment optimization.

Visit tis.biz to reimagine your approach to payments.

 

Enterprise Payment Optimization (EPO) is the key to improving information availability, cash visibility and liquidity management

11-06-2021 | TIS |

Data Silos restrict the flow of information

One of the challenges for global enterprises, is that many areas or departments have become data silos, full of key information that is truncated and not being shared. These data “pockets” reduce information visibility and prevent optimization of processes for the company as a whole. Senior management has a vision and a strategy; however, an information feedback loop cannot function effectively or efficiently if there is a lack of organizational transparency.

The right technology platform supports end-to-end data visibility and accessibility

To achieve “perfect,” end-to-end organizational visibility for payments and payments information would mean a standardization, concentration and centralization of systems, processes, (banking) partners and even locations. That is neither possible nor practical.

“Given the often-fragmented ERP and systems landscape, a holistic view of payments information via a hub is the only realistic way to gain a consolidated view, a single source of truth across all corporate departments, subsidiaries, and geographies,” remarks Jörg Wiemer, CSO and TIS Co-Founder.

Companies can achieve many of the desired benefits of end-to-end visibility by using an Enterprise Payments Optimization Platform (EPOP).

The TIS Enterprise Payments Optimization Platform functions as a global, multi-functional ecosystem

 The TIS Enterprise Payments Optimization Platform is a global, multi-channel, multi-bank connectivity ecosystem. The platform supports a solid foundation for connectivity to ERPs, TMSs, HR and other payment input systems as well as financial institutions. Data is uploaded from ERPs etc. through plug-ins or agents and passed on through the TIS platform to banks. The platform provides connectivity by creating and maintaining formats (host-to-host, EBICs, and other local “flavors”) and partnerships (e.g., SWIFT). The EPOP streamlines and automates the processing of a company’s payments, removing complexity while adding an array of additional benefits.

Enterprise Payment Optimization is key to having the right kind of data available

“The ability to actively use payments’ data is key for better decision making throughout the organization. The finance function has a very valuable commodity at their fingertips in the form of information stored on the EPO platform,“ says Erik Masing, CEO.

This data is the basis for managing cash, monitoring liquidity, engaging in cash forecasting, as well as supporting the information needs of treasury, finance, risk, compliance, and the CFO. This information can also benefit procurement, for example, during negotiations of contract terms and conditions. With full information, the importance of suppliers can be measured through the relative spend across the entire company. Managers can make better and more informed decisions by using business intelligence and data analytics, impacting both the top and the bottom line.

Bank Account Management (BAM) puts treasury in charge of its banking relationships globally

For the finance function, a clean master data repository is essential to manage hundreds (if not thousands) of bank accounts across various subsidiaries and geographies. Corporate treasury can store the organization’s global bank account data in the EPOP’s bank account management (BAM) module. During regular operations, the activity of every listed user is tracked and traced through an immutable audit log that helps to avoid unauthorized actors abusing the system’s controls. There is also a processing function that scans all user permissions within the platform. If any irregular configurations are identified (e.g., a user having the ability to review and approve his own payments), the system will generate an alert and flag the user. BAM can become a successful collaboration between headquarters and departments as well as subsidiaries, orchestrated by a governance process. If the company has stored its data in a TMS, downloading the master data can be done in a matter of seconds.

Clients deserve tailored solutions that meet their requirements

The TIS vision is that their clients can operate in an open, innovative, and multi-tenant ecosystem, accessing a rich array of platform-based products and services. This new, game-changing world is not accessible if you are inflexible and locked-in by a TMS. Clients need a place where all stakeholders can collaborate and exchange information. TMS suites have historically grown into what they are today i.e., an aggregation of solutions attached to a central structure. A TMS covers many different disciplines, however, it usually offers too much, or too little i.e., not a tailored solution or the “right” fit. If a customer wants to optimize their payment process and use this information to support cash forecasting only, why should it implement a full TMS “monolith”.

Flexibility, innovation and collaboration become the new normal

By helping to break down the silos created by company-centric and e.g., bank-proprietary applications, an open, innovative, and cloud-based architecture lays the foundation for “best-of-breed” solutions.

“Access to company-wide, real-time data via a scalable and versatile platform gives decision makers additional possibilities to analyze data and to collaborate,” states Erol Bozak, CPO and TIS Co-Founder.

It also provides the basis for entities to take advantage of a wide range of best-of-breed products.  Value-added-services such as cash forecasting or FX / Hedging etc. are available. Innovative platforms such as the TIS Enterprise Payments Optimization Platform acts as ecosystems, making the products and services from specialized vendors available using a single sign-on. It also allows platform participants and partners to work to together sharing information in order to reduce the risk of fraud using products such as Payee Community Screening (PCS).

In summary

Ten years ago, cloud was in its infancy and Treasury Intelligence Solutions became an early adopter and a leader in SaaS. TIS believes that cloud-based, open ecosystems that support best-of-breed applications enabled by APIs, will become the new normal.  Enterprise payment optimization remains key to improving information availability, cash visibility and liquidity management. The Enterprise Payments Optimization Platform is the bridge that closes the gaps between internal as well as external functions, partners, and peers.

Visit tis.biz and find out more about the TIS Enterprise Payment Optimization Platform.

About TIS

TIS is reimagining the world of enterprise payments through a cloud-based platform uniquely designed to help global organizations optimize outbound payments. Corporations, banks and business vendors leverage TIS to transform how they connect global accounts, collaborate on payment processes, execute outbound payments, analyze cash flow and compliance data, and improve critical outbound payment functions. The TIS corporate payments technology platform helps businesses improve operational efficiency, lower risk, manage liquidity, gain strategic advantage – and ultimately achieve enterprise payment optimization.

Visit tis.biz to reimagine your approach to payments.

 

Digitalizing Treasury with a Best-of-Breed Ecosystem

24-03-2021 | TIS |

The idea that best-of-breed selection, as opposed to a traditional “full stack” TMS, is the way forward gets the TIS “Executive Briefing” treatment in its latest paper. Are treasurers ready to abandon their love of TMS’ and migrate to best-of-breed solutions instead?

Read the Executive Briefing and find out more about:

  1. Advantages of specialist vendors compared to All-in-One solutions for treasury
  2. How seamless data flow through API integration can deliver better user experience and faciliate strategic business decisions
  3. How to set up a best-of-breed solution that is tailored to your company’s treasury needs and future growth

Leverage the expertise of multiple specialists with seamless API integration and cloud technology.


About TIS

TIS (Treasury Intelligence Solutions GmbH), founded in Walldorf, Germany in 2010, is a global leader in managing corporate payments. The Financial Times named TIS one of “Europe’s Fastest Growing Companies” in 2019, 2020 and 2021. Offered as Software-as-a-Service (SaaS), the TIS solution is a comprehensive, highly-scalable, cloud platform for company-wide payments and cash management. The TIS solution has been successfully used for many years in both large and medium-sized companies, including Adecco Group, Hugo Boss, Fresenius, Fugro, Lanxess, OSRAM and QIAGEN. More than 25% of  DAX companies are already TIS customers.

Your world of Payments. ONE Login.

www.tis.biz

Webinar recording: Cashforce & TIS are Partnering Up to Deliver Best-of-Breed Technology

| 17-03-2021 | treasuryXL | Cashforce | TIS

Cashforce & TIS are partnering up to deliver best-of-breed technology. Watch the webinar recording with Nicolas Christiaen and Joerg Wiemer and get to know more about this best-of-breed approach and how this partnership can help you tackle your challenges in cash flow forecasting and corporate payments.

 

 

 

Cashforce & TIS – Partnering Up to Deliver Best-of-Breed Technology

| 29-01-2021 | treasuryXL |

In July 2020, Cashforce, the “next generation” cash forecasting & working capital analytics company and TIS, well known as a leading bank connectivity & payments provider formed a strategic alliance. This collaboration provides a unique solution for corporates looking for a rich cash forecasting and payment experience with seamless integration to their banks and enterprise systems (ERP, TMS etc.).

Join the webinar with Nicolas Christiaen, CEO & Co-founder at Cashforce and Jörg Wiemer, CSO and Co-founder at TIS and get to know more about this best-of-breed approach and how this partnership can help you tackle your challenges in cash forecasting and corporate payments.

Register Here

 

Date and Time
  • Tuesday, March 2nd 2021
  • 16:00-17:00

 

 

 

Three Basic Principles your Company needs to follow to prevent Payments Fraud

| 20-01-2021 | TIS |

Even the best tech solutions may not help you prevent and detect fraud, if your basic security procedures are insufficient. Based on our experience helping world leading brands set up proper controls against payments fraud, we believe that payment security is a much broader topic than just fraud. Therefore, payment fraud prevention or detection can only be a meaningful exercise when it is an integral part of a company’s overall payment security strategy.

 

Fraudsters come up with new ideas to scam companies all the time. As digitalization transforms the way payments are being made, the risk for cybercrime also increases. Recently, companies have become prey to business email compromise attacks (BEC): Someone will impersonate a high-level manager and tell an employee that due to extraordinary circumstances they need to make a payment right then and there. As the name suggests, this is usually done via email, but fraudsters have become more creative. In some instances, a voice imitation software was used to convincingly fake a manager’s voice on the phone. Because of nefarious scams like this, it is important to raise awareness for security and fraud prevention among your employees.

 

However, fraud is not always an external threat. Often, fraud happens within a company. For big companies it can be a struggle to keep track of all payments that are made across their worldwide subsidiaries – especially, if they are made manually. Unfortunately, fraudulent payments made by employees are usually detected afterwards – if they are detected at all.

It is therefore important to build a payments security strategy that works on all levels. But what does that mean? Where should a company begin?

A good start is to make sure that you have a system where each step of a payment process is visible and well-documented. Remember: Transparency and visibility are the enemies of fraud. You should always have control of all your payments. Standardization of payment processes and workflows is one step closer to better visibility and control. This way, fraud can be stopped before it has even happened. The following three basic principles can lay the groundwork:

1. Segregation of duties

This is a no-brainer. When responsibilities are shared, people can keep an eye on each other. Ideally, every critical payments’ process should involve multiple people or even multiple departments. Suspicious transactions are spotted at once.

2. A single payments’ gateway

Even if your payments are not fully centralized, it is very helpful to have a single payments’ gate. Combined with value-added services such as validation, multi-step authorization and routing, payments can be managed end-to-end. Additionally, centralized data visibility supports internal controls and audit compliance and the monitoring of transactions becomes much easier.

3. Appropriate designation of signature authority

Multi-level approval processes need clearly defined designation of signature authorities. Make sure that your workflows are sufficient and flexible enough to accommodate your company’s needs.

The TIS corporate payments platform has designed many enablers and features for its cloud-based platform to support payment security.  You can standardize and automate your payments processes, enforce segregation of duties, and manage signature authorities from wherever you are.

 

About TIS

TIS (Treasury Intelligence Solutions GmbH), founded in Walldorf, Germany in 2010, is a global leader in managing corporate payments. The Financial Times named TIS as one of “Europe’s Fastest Growing Companies” for 2019 and 2020. Offered as Software-as-a-Service (SaaS), the TIS solution is a comprehensive, highly-scalable, cloud platform for company-wide payments and cash management. The TIS solution has been successfully used for many years in both large and medium-sized companies, including Adecco Group, Hugo Boss, Fresenius, Fugro, Lanxess, OSRAM and QIAGEN. More than 25% of DAX companies are already TIS customers.

 

 

Executive Briefing: The Next Gen Architecture for a Digital Treasury

07-01-2021 | TIS |

 

Read TIS’ new executive briefing The Next Gen Architecture for a Digital Treasury
and find out how to digitalize treasury with a best-of-breed ecosystem!

 

Leverage the expertise of multiple specialists with seamless API integration and cloud technology. Find out more about:

  1. Advantages of specialist vendors compared to All-in-One solutions for treasury
  2. How seamless data flow through API integration can deliver better user experience and faciliate strategic business decisions
  3. How to set up a best-of-breed solution that is tailored to your company’s treasury needs and future growth

About TIS

TIS (Treasury Intelligence Solutions GmbH), founded in Walldorf, Germany in 2010, is a global leader in managing corporate payments. The Financial Times named TIS as one of “Europe’s Fastest Growing Companies” for 2019 and 2020. Offered as Software-as-a-Service (SaaS), the TIS solution is a comprehensive, highly-scalable, cloud platform for company-wide payments and cash management. The TIS solution has been successfully used for many years in both large and medium-sized companies, including Adecco Group, Hugo Boss, Fresenius, Fugro, Lanxess, OSRAM and QIAGEN. More than 25% of DAX companies are already TIS customers.

www.tis.biz

Press Release: TIS among growth champions in Germany

| 08-12-2020 | TIS |

The cloud-based corporate payments expert establishes itself on the ranking by FOCUS-BUSINESS and Statista for the fourth time in a row.

Walldorf, December 8, 2020. FOCUS-BUSINESS has recently announced growth champions for the sixth time. For the fourth time in a row, TIS (Treasury Intelligence Solutions GmbH) was in the published ranking among the 500 fastest-growing German companies. Its above-average growth in turnover and staff and its innovative business model were important factors for the ranking.

As in previous years, Statista, the Hamburg-based statistics portal, selected a list of 12,000 German companies from all sectors with a particularly strong growth in sales or workforce in recent years. In April, there was a call for participants and on October 13, FOCUS-BUSINESS Growth Champions published the results. TIS ranking again among Germany’s top 500 fastest-growing companies shows that for mid-sized companies to large corporates, a streamlined and secure global payments strategy is becoming a must. From a technology standpoint, TIS’ cloud-based platform is the leading solution for corporate payments. Looking into the future, TIS will further accelerate its business growth in Europe and in the United States.

“With this year soon coming to an end, I must say that 2020 has been characterized by extraordinary challenges,” says Joerg Wiemer, co-founder and Chief Strategy Officer at TIS. “The concept of ‘Working from Home’ has highlighted the importance of digitalization. The current situation has made the decision makers in companies realize that cloud-based solutions are not only indispensable for business-critical processes such as payments, but the automation and standardization enabled by such solutions also boost efficiency and enhance security for these processes.”

About TIS

TIS (Treasury Intelligence Solutions GmbH), founded in Walldorf, Germany in 2010, is a global leader in managing corporate payments. The Financial Times named TIS as one of “Europe’s Fastest Growing Companies” for 2019 and 2020. Offered as Software-as-a-Service (SaaS), the TIS solution is a comprehensive, highly-scalable, cloud platform for company-wide payments and cash management. The TIS solution has been successfully used for many years in both large and medium-sized companies, including Adecco Group, Hugo Boss, Fresenius, Fugro, Lanxess, OSRAM and QIAGEN. More than 25% of DAX companies are already TIS customers.

www.tis.biz

 

 

Press Contact:

Treasury Intelligence Solutions GmbH

Liang Fang

Altrottstraße 31

69190 Walldorf

Germany

 

If you want to know more about TIS, visit www.tis.biz

Read the complete press release also here