AWS adoption in financial services is accelerating, more and more large regulated FS organisations are using AWS to transform their business at scale. Hear from HSBC on how they've been successful in doings so, what are the lessons learnt and recommended best practices.
3. Diversity of business makes technology complex
Multiple
banking
platforms
Geographically
dispersed
people and systems
Highly
regulated
operating
environment
Rapidly evolving
customer
needs and
expectations
5. Engaging with our key stakeholders: e.g. Regulators
Mexico City
Vancouver
New York
Hong Kong
Kuala Lumpur &
Singapore
London
6. AWS - a key component of our strategy
Mainframe
abstraction
to deliver our
more dynamic
customer
engagement
components
Leveraging
data
to enable
personalised,
real-time
alerts,
notifications
and reminders
Increasing agility
& scalability
through strategic
use of AWS
infrastructure and
technology
services
Increasing
security
by building
consistency and
governance into
our use of Cloud
technologies
7. Delivering business benefits with AWS Cloud Architecture
1. How do we give our customers real
time access to their data?
2. How do we upgrade our
infrastructure for legacy applications,
and do it just once?
3. How do we design for Open Banking
without knowing the volumes or
usage patterns?
Mainframe data into AWS serverless architecture to
give relevant, personalised event notification in real
time
Move applications from proprietary Unix on
premise to Linux on EC2, and get the benefits of
elasticity, flexibility and lower cost (+ simplify our
upgrade cycle at the same time)
Build the API layer on AWS, giving flexibility to
scale up to meet demand, without having to
plan/invest in unknown capacity requirements
up-front
9. JSON API
JSON API
Async JSON
API
JSON API
Async JSON
API
UA
Value-Added Messaging
Leveraging data to deliver on our
experience promise – alerts,
notifications, reminders
making everyday banking more
delightful and helpful
S3
Preferences
Lambda
API Gateway
DynamoDB
Event Engine
Aurora
Kinesis
Lambda
CRF API
S3
JSON/Kinesis
JSON/Kinesis
Direct
Connect
Mapper
Mapper
Mobile Messaging
Lambda
API Gateway
DynamoDB
Kinesis
Template Service
Lambda
API Gateway
DynamoDB
Mobile Messaging
Lambda
API Gateway
DynamoDB
Kinesis
How do we give our customers real time access to their data?
10. How do we upgrade our infrastructure for legacy applications,
and do it just once?
VPC
Route 53
Amazon Cloudfront
AZ1 AZ2
Public Subnet
Private Subnet
Private Subnet
WAF Layer
IRISA Layer
Public Subnet
Private Subnet
Private Subnet
WAF Layer
IRISA Layer
HSBC Datacentres – internal applications
Scaling Group
Scaling Group
S3
Static Assets
11. How do we design for Open Banking without knowing the
volumes or usage patterns?
DynamoDB
EC2 Filter
Forward Proxy
VPC
Lambda/
Elastic Beanstalk
API Gateway
- internal
EC2 -
Forgerock
API Gateway
- External
EC2
ReverseProxy
Amazon RDS
WAF Rules
IP Rate Limiting
Amazon
Cloudfront
VPC – Forward Egress
VPC
Peering
TPP App
Endpoint
gateway
Internet
gateway
NAT
gateway
HSBC Datacentres
Lambda/
Elastic Beanstalk
12. Building on these capabilities to give
our amazing people access to the
best tools, delivering more quickly,
helping us build better relationships
with our customers
The Future: Our partnership with AWS