Skip to main content
close search
site logo
Dive Brief

'Systemically important' cloud firms lack oversight, lawmakers say

Published Aug. 26, 2019
Dan Ennis's headshot
Senior Editor
Phillip Pessar for Flickr

Dive Brief:

  • Amazon Web Services' (AWS) role in the Capital One data breach should prompt financial regulators to consider designating the three leading cloud providers — AWS, Microsoft Azure and Google Cloud — as systemically important financial market utilities, Reps. Katie Porter, D-CA, and Nydia Velazquez, D-NY, wrote Thursday in a letter to Treasury Secretary Steven Mnuchin

  • 100% of financial institutions use cloud services in some capacity, the letter states, citing a 2016 McKinsey report. The three top cloud service providers own a 57% share of the market, according to ITPro Today.

  • Regulatory enforcement of cloud service providers is insufficient, the congresswomen said, citing Federal Reserve examiners' April visit to an Amazon facility.

Dive Insight:

According to the letter, the Financial Stability Oversight Council must consider four factors when determining whether an institution is systemically important:

  • The aggregate monetary value of the transactions it processes.

  • Its relationships with other financial market utilities.

  • The effect that a failure or disruption would have on critical markets and the financial system at large.

  • The exposure of the company to its counterparties.

"Though the cloud service providers at issue may not process monetary transactions directly, their operational stability underpins an increasing share of banks’ central functions," Porter and Velazquez wrote. 

Bank of America, for example, aims in the next few years to deliver "80 percent of its technological workload" via the cloud, according to a 2017 Microsoft release. (Bank of America partners with Azure for its cloud services.) A disruption to Azure, then, would paralyze 80% of BofA's functions, the lawmakers said. Such an event would erode public confidence. 

Porter and Velazquez further point to the use of cloud services by government agencies, citing a pending $10 billion Defense Department cloud computing contract. A failure there could be a threat to national security, they said.

The Bank Service Company Act gives the Fed limited oversight of nonbank vendors that provide the software to run banks' deposit and loan platforms, the letter said. But when agency representatives visited the Amazon facility, they were "chaperoned" by an Amazon employee, allowed to review certain documents on Amazon laptops but not permitted to take anything with them, the letter said. "The perfunctory review of a handful of Amazon-selected documents over the course of a few hours, on-site, is not meaningful oversight," Porter and Velazquez wrote.

The lawmakers asked Mnuchin to respond by Sept. 15.

Meanwhile, Paige Thompson, the woman accused in the hack, was denied bail Friday at a hearing in Seattle. A judge denied Thompson's request to be freed to a halfway house with a GPS tracker after prosecutors argued she was a risk to herself who must remain locked up while the case continues. The hack exposed sensitive data linked to 106 million customers.

Recommended Reading

Filed Under: Technology, Risk

Editors' picks

  • Consumer Financial Protection Bureau Director Rohit Chopra testifies before the Senate Banking, Housing and Urban Affairs Committee April 26, 2022 in Washington, DC.
    Image attribution tooltip
    Win McNamee via Getty Images
    Image attribution tooltip

    CFPB issues final rule on open banking

    Payment apps are included in the data-control rule, in a change from last year’s proposal. Banks and credit unions with less than $850 million in assets are exempt.

    By Dan Ennis • Oct. 22, 2024
  • The Federal Reserve building at sunset.
    Image attribution tooltip
    Douglas Rissing via Getty Images
    Image attribution tooltip

    9 crucial reactions to the capital requirements preview

    BofA and JPMorgan execs talk death, despair and a lack of specifics, while lawmakers and regulators appear to fall along party lines in the snowballing fight over the Basel endgame.

    By Dan Ennis • Sept. 11, 2024

Company Announcements

View all | Post a press release
interface.ai Reinforces AI Leadership in Financial Services with Industry-Unique Device Biomet…
From Jordan Mitchell
November 21, 2024
Cross Border Payment Solutions Launches to Help Business Take Control of International Finance
From Cross Border Payment Solutions
November 18, 2024

Want to share a company announcement with your peers?

Get started

Editors' picks
  • Consumer Financial Protection Bureau Director Rohit Chopra testifies before the Senate Banking, Housing and Urban Affairs Committee April 26, 2022 in Washington, DC.
    Image attribution tooltip
    Win McNamee via Getty Images
    Image attribution tooltip

    CFPB issues final rule on open banking

    Payment apps are included in the data-control rule, in a change from last year’s proposal. Banks and credit unions with less than $850 million in assets are exempt.

    By Dan Ennis • Oct. 22, 2024
  • The Federal Reserve building at sunset.
    Image attribution tooltip
    Douglas Rissing via Getty Images
    Image attribution tooltip

    9 crucial reactions to the capital requirements preview

    BofA and JPMorgan execs talk death, despair and a lack of specifics, while lawmakers and regulators appear to fall along party lines in the snowballing fight over the Basel endgame.

    By Dan Ennis • Sept. 11, 2024
Latest in Technology
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell