Banking technology chiefs are urgently reassessing legacy email encryption systems as new EU regulations, artificial intelligence adoption, and cloud migration plans collide. The Digital Operational Resilience Act (DORA), which took effect January 2025, mandates stricter operational risk controls across financial institutions, forcing banks to audit decades-old secure messaging infrastructure that may not meet modern compliance standards.
Many banks still rely on outdated encryption platforms that cannot integrate seamlessly with cloud environments or AI-powered workflow tools now considered essential for competitive operations. This creates a dangerous compliance gap as institutions face simultaneous pressure to modernize technology stacks while maintaining uninterrupted secure communications for sensitive client data and transaction information.
The reassessment is hitting trading desks, compliance teams, and IT departments simultaneously, with some institutions discovering their current systems lack adequate audit trails or automated monitoring capabilities required under DORA. Banks delaying upgrades risk regulatory penalties and operational disruptions as legacy systems become incompatible with modern infrastructure.
FXnCO Insight
Financial institutions using legacy encryption should accelerate vendor assessments immediately, as DORA enforcement combined with cloud migration timelines creates a narrowing window for compliant system transitions.
Source: Finextra