Bank of England CIO: ‘Beware of the cloud, beware of vendors’

Old Lady grumbles about new thingy

The Bank of England is loosening up on IT delivery and recruitment, but not its resistance to public cloud.

John Finch, CIO of the UK's central bank since September 2013, Wednesday ruled out the use of any public cloud by the bank for the foreseeable future.

Cloud has however crept into the Bank’s IT margins, where it’s been working with firms on the new plastic bank notes that debuted in March from Clydesdale Bank.

“One area where it’s changed, is we have to share details on design of the new bank note with people who make the machines that process them — we have built a hybrid private cloud for them to connect to, so at the margins of what we do,” he conceded.

However, speaking at the Cloud World Forum in London, Finch ruled out any role for cloud in the Bank’s core IT systems and infrastructure, reiterating an announcement first made in 2014.

One of the purported benefits of public cloud is you no longer need to buy and maintain your own servers – they become the responsibility of somebody else.

But, Finch estimates if the reasons for going cloud is to save money, you shouldn’t go to the cloud. “Beware of the cloud and beware of the vendors,” Finch warned. “All those messages I gave a year ago, I passionately believe.”

“Make sure you understand where your data resides, make sure you understand the details of your contract, make sure you understand the security, and make sure you stay in control,” he said.

Finch has realised the cost and flexibility benefits of public cloud instead by consolidating servers and virtualisation, he told The Register.

Finch stressed the importance of getting the details right before floating and said a physical objective is vital, not a technology one.

Finch was appointed two months after Canadian Mark Carney — regarded as a moderniser, who is changing the structure and culture of the 300-plus-year old organisation — officially took over as Governor.

Under Finch and Carney, the Bank is trying to both unify and become more flexible in its IT systems.

For all the skepticism on cloud, policies intended to modernize the bank’s practices and the technology underpinning it haven’t changed.

The Bank is trying to consolidate its different data architectures into just one – and responsibility for this has fallen to chief data officer Hany Choueiri, brought in last year from HSBC and reporting to Finch. Choueiri has served as global banking and markets chief data officer for Europe and head of data quality.

Also, Finch has created a data lab and a digital lab, whose remits are to “innovate”, essentially develop, test and prove ideas that work for the business. The digital lab is already working on a new mobile strategy to replace Blackberry.

Projects are given a two-three month window to prove themselves according to a set of pre-defined goals and strategic objectives for the bank.

The bank's IT hiring policy is also striving for greater diversity – by age, sex and ethnicity – incorporating new graduated recruitment and school-leaver apprenticeship programs. In the past, he joked, to get a Bank of England job you’d need to have a first from Oxford or Cambridge, or to have been very bright at Imperial College London, and male.

“Particularly in technology we want to recruit people who we wouldn’t normally recruit – specky, geeky kids hacking in their bedroom,” he said. The philosophy is fresh thinking and ideas will flow from diversity and cause disruptive change for the Bank.

Finch admitted the work of creating a single data model is causing strains, with Choueiri's work “creating massive amounts of stress for my classic IT group,” Finch said. ®

Similar topics

Other stories you might like

  • Battlefield 2042: Please don't be the death knell of the franchise, please don't be the death knell of the franchise

    Another terrible launch, but DICE is already working on improvements

    The RPG Greetings, traveller, and welcome back to The Register Plays Games, our monthly gaming column. Since the last edition on New World, we hit level cap and the "endgame". Around this time, item duping exploits became rife and every attempt Amazon Games made to fix it just broke something else. The post-level 60 "watermark" system for gear drops is also infuriating and tedious, but not something we were able to address in the column. So bear these things in mind if you were ever tempted. On that note, it's time to look at another newly released shit show – Battlefield 2042.

    I wanted to love Battlefield 2042, I really did. After the bum note of the first-person shooter (FPS) franchise's return to Second World War theatres with Battlefield V (2018), I stupidly assumed the next entry from EA-owned Swedish developer DICE would be a return to form. I was wrong.

    The multiplayer military FPS market is dominated by two forces: Activision's Call of Duty (COD) series and EA's Battlefield. Fans of each franchise are loyal to the point of zealotry with little crossover between player bases. Here's where I stand: COD jumped the shark with Modern Warfare 2 in 2009. It's flip-flopped from WW2 to present-day combat and back again, tried sci-fi, and even the Battle Royale trend with the free-to-play Call of Duty: Warzone (2020), which has been thoroughly ruined by hackers and developer inaction.

    Continue reading
  • American diplomats' iPhones reportedly compromised by NSO Group intrusion software

    Reuters claims nine State Department employees outside the US had their devices hacked

    The Apple iPhones of at least nine US State Department officials were compromised by an unidentified entity using NSO Group's Pegasus spyware, according to a report published Friday by Reuters.

    NSO Group in an email to The Register said it has blocked an unnamed customers' access to its system upon receiving an inquiry about the incident but has yet to confirm whether its software was involved.

    "Once the inquiry was received, and before any investigation under our compliance policy, we have decided to immediately terminate relevant customers’ access to the system, due to the severity of the allegations," an NSO spokesperson told The Register in an email. "To this point, we haven’t received any information nor the phone numbers, nor any indication that NSO’s tools were used in this case."

    Continue reading
  • Utility biz Delta-Montrose Electric Association loses billing capability and two decades of records after cyber attack

    All together now - R, A, N, S, O...

    A US utility company based in Colorado was hit by a ransomware attack in November that wiped out two decades' worth of records and knocked out billing systems that won't be restored until next week at the earliest.

    The attack was detailed by the Delta-Montrose Electric Association (DMEA) in a post on its website explaining that current customers won't be penalised for being unable to pay their bills because of the incident.

    "We are a victim of a malicious cyber security attack. In the middle of an investigation, that is as far as I’m willing to go," DMEA chief exec Alyssa Clemsen Roberts told a public board meeting, as reported by a local paper.

    Continue reading

Biting the hand that feeds IT © 1998–2021