Industry Outlook: Banking & Financial Services — Week of March 16, 2026

Market Outlook

• Rate path clouded by Iran war inflation shock. Central banks in the US, UK and euro area are signaling a willingness to hike again if the Iran war–driven energy price shock persists, reversing the earlier easing narrative. Higher-for-longer rates will pressure funding costs, NIM planning and credit quality models, and will expose any weaknesses in banks’ interest rate risk and stress-testing tooling.
• Regulators recalibrate capital and risk transfer rules. US regulators (Fed/FDIC/OCC) proposed measures that would reduce capital requirements for the smallest banks by ~7.8% while slightly easing requirements for the largest, even as the ECB probes leverage in significant risk transfer (SRT) deals. This combination points to a more intrusive, data-driven supervisory stance on capital optimization, securitization and balance sheet risk transfer structures.
• Trading, payments and listings continue US-centric shift. IG Group is weighing a listing move from London to New York to access deeper capital pools and the fast-growing US prediction markets, while JPMorgan is expanding its Boston presence with hundreds of new roles. The gravitational pull of US markets and talent is intensifying, raising competitive pressure on non-US institutions to modernize digital trading, data and payments platforms.

Discussion: CTOs should assume a volatile, higher-for-longer rate environment and more granular supervisory scrutiny on risk transfer, and prioritize real-time risk data infrastructure and flexible balance-sheet analytics.

Headwinds

• Ransomware and data theft expose vendor weak links. Marquis Software Solutions disclosed theft of personal and financial data for over 672,000 bank customers after a ransomware attack, underscoring third-party concentration risk in marketing and compliance platforms. For banks, this elevates regulatory and reputational exposure and will accelerate supervisory focus on vendor security posture, data lineage and incident response integration across the ecosystem.
• AI ambitions stalled by legacy tech and budget drag. A Capgemini report finds more than 80% of bank executives are failing to realize expected AI gains as legacy systems consume IT budgets and AI pilots fail to scale. This creates a strategic risk where competitors that have already modernized cores and data platforms can pull ahead on AI-enabled risk, fraud and personalization while laggards remain stuck in costly experimentation.
• Fraud gets cheaper as synthetic media proliferates. PYMNTS highlights how generative AI and synthetic media are driving down the cost of sophisticated fraud, while Trulioo stresses that episodic KYC/KYB checks are no longer sufficient. Banks face rising losses and regulatory criticism if they cannot move to continuous identity assurance, behavioral analytics and multi-rail fraud orchestration across cards, A2A, BNPL and instant payments.

Discussion: Defensive priorities this week should center on tightening third-party risk controls, ring-fencing AI budgets from legacy run costs, and accelerating deployment of continuous identity and fraud analytics across all channels.

Tailwinds

• Open banking and wearables expand payment touchpoints. Huawei and Yowpay launched an open banking smartwatch POS app, illustrating how PSD2/open banking rails are moving into wearables and non-card form factors. This opens space for banks to embed account-to-account payments in new contexts, reduce scheme fees and gather richer behavioral data—if they can expose robust, developer-friendly APIs and consent management.
• Embedded investing and crypto enter mainstream banking UX. Sunstate Bank is embedding stock and crypto trading directly into checking accounts via InvestiFi, while Apex Group and Coinbase Asset Management launched a tokenized Bitcoin yield fund on Base. These moves signal growing institutional comfort with embedded investing and tokenized products, creating opportunities for banks to partner rather than compete on digital wealth and digital asset offerings.
• Intelligent payment routing and tokenization reshape commerce. Visa’s new Intelligent Authorisation single API for smart routing, combined with the broader shift to tokenization-enabled ‘invisible checkout’ and agentic commerce highlighted by PYMNTS, is redefining how payments are initiated and authorized. Banks that integrate intelligent routing and network tokenization can improve approval rates, reduce fraud, and stay relevant as wallets and autonomous agents intermediate customer relationships.

Discussion: To capitalize, CTOs should prioritize API-first payment capabilities, embedded finance partnerships, and tokenization strategies that let the bank plug into new commerce modalities without overhauling every downstream system at once.

Tech Implications

• Agentic AI workforce targets financial institutions. Obin AI, founded by JPMorgan and Google veterans, emerged from stealth with $7M to build an ‘agentic workforce’ for financial institutions, reflecting a broader shift from chatbots to orchestration of autonomous task agents. For banks, this raises both opportunity (automating complex middle/back-office workflows in risk, compliance and operations) and governance challenges (model risk, auditability and human-in-the-loop design).
• Real-time bank run and liquidity standards tighten. The Bank of England’s PRA proposed new standards to protect firms from tech-accelerated bank runs, acknowledging that digital channels and instant payments compress liquidity stress timelines. This will likely translate into expectations for real-time liquidity dashboards, high-frequency stress testing, and integration of payments, treasury and customer behavior data into supervisory reporting pipelines.
• Core banking and payments stacks under consolidation pressure. NCR Voyix’s sale of its Japanese bank tech business to NTT Data, and Visa’s move to a single API for intelligent authorization, both point toward consolidation around fewer, more integrated platforms. Banks running fragmented, country- or product-specific cores and payment engines will find it harder to keep up with regulatory, AI and real-time payment demands without rationalizing and modularizing their stacks.

Discussion: Engineering leaders should be making concrete decisions on AI orchestration patterns, real-time data infrastructure for liquidity and risk, and a roadmap to simplify and modularize payments and core platforms to integrate with emerging ecosystems.

CTO Action Items

Rebalance your 2026–2028 roadmap to explicitly carve out protected investment for AI and data modernization, rather than allowing legacy run costs to cannibalize strategic programs. Prioritize two domains for near-term delivery: (1) real-time risk and liquidity dashboards that ingest payments, treasury and market data, anticipating tighter supervisory expectations, and (2) continuous identity and fraud controls that span KYC/KYB, transaction monitoring and device intelligence. Use the open banking and embedded investing announcements as a catalyst to review your API strategy and partner ecosystem, identifying one or two concrete pilots in wearables, wallets or embedded wealth. Finally, reassess third-party risk around martech, RegTech and data vendors in light of the Marquis breach, ensuring you have end-to-end data lineage, breach playbooks and contractual obligations aligned with current ransomware and privacy realities.