Operations update

Operations update SOFE 2014

Nigel Hutson

Head of Application Service Delivery & System Administration

Operations update – SOFE 2014 2

Since 2012…

• Distributed Architecture completion

• FIN Renewal programme

• Sanctions Screening service

• Cloud solutions: Lite2

• Market Infrastructure Resilience Service (MIRS)

• HSM replacement programme


Distributed Architecture completion

Dec 2008

May 2009

OPC-CH Leased

Site Supports

Production

Aug 2009

Nov 2009

Distributed

Zones

Sept 2010

Aug 2010

June 2011

OPC-NL

Expansion

Enhanced FIN-

SWIFTNet

Resilience (T02/T04)

Jan 2009

OPC-NL

Security

Upgrades

Follow The

Sun Support

APAC CCC

OPC-US

Cooling Plant

& CR Redesign

Sept 2011

DRI Power

Upgrades

OPC-US Power

Plant Upgrades

4

2012

OPC-CH

Build

2013/14

OPC-CH

Operational

Operations update – SOFE 2014

Distributed Architecture

• CH data centre completed and commissioned

• EU zone moved from leased site

• TA zone constructed in CH

• Additional control systems deployed

• TA zone dismantled in OPC-NL


Distributed Architecture view

6

OPC-US OPC-CH OPC-NL

SWIFTNet & FIN

systems TA zone SWIFTNet & FIN

systems EU zone

SWIFTNet & FIN systems TA

zone & EU zone

DRI

Real time replication

of TA zone messages

Real time replication

of EU zone messages

SWIFTNet & FIN systems TA

zone & EU zone

Replication of transaction history for TA zone and EU zone to the cold start site.

Message content is not replicated.


7

Country to Messaging Zone allocation European zone

Trans Atlantic zone


• All BICs of a country are assigned to the same zone

• US + related territories must remain in TA zone

• EU + related territories must remain in EU zone

FIN Renewal programme

• Next generation of FIN platform implementation

• Guarantee FIN evolution in the future

• Protect against obsolescence and technology risks

8

Mainframe

Proprietary

OS

In-house

database

Application code

ALGOL

Server

Standard

OS

Oracle

RDBMS

Application code

C++


Overview of FIN flow


RP

Regional Processor

SCP

Service Control

Processor

SP

Slice Processor RP

Regional Processor

1 2

3 4

5 6

7

8

RP: Login / logout

Message validation

Message delivery

SP: Message safestore

Recovery manager

Retrieval source

SCP: Session control

Configuration management

Login process

Board

approval

Dec 2010

FIN Renewal Planning (revised June 2014)

Deploy/ORT SP

SCP

Design/Build/Test Spec Deploy

Spec Design/Build/Test Deploy

Infrastructure

RP

Design/Build/Test Deploy Spec

RP – Regional Processor

SP – Slice Processor

SCP – System Control Processor

Per revised FR plan – June 2014

2010 2011 2012 2013 2014 2015 2016

Design/Build/Test Deploy Spec

10

FIN Renewal Phase 1 complete

• Full cutover completed in June 2013

• Mainframe count reduced by about 70%

• Over 7 billion FIN messages handled on the renewed RP without any customer impact

FIN Renewal Phase 2 work in progress

• SP development and acceptance/regression testing in advanced stage;

• First SP release deployed in vendor test environment

• Detailed live deployment and cutover planning in progress

• SCP specifications and technology finalized; Development work in progress Operations update – SOFE 2014

SWIFT

activities

Move Vendor

BICs

Move Test & Training BICs

Move of live BICs (RP by RP)

FIN Renewal – SP testing plan

11

Sep ‘14 Jan ‘15 May ‘15 Jul ‘15

Optional vendor testing Renewed SP available for

Interface vendor testing

Optional testing

for all customers

Optional testing

for Premium

Plus customers

Deploy and configure

renewed SP servers and

integrate into PRD network

Premium+ T&T

BICs on

renewed SP

All T&T BICs moved to

renewed SP

TA Zone – EU Zone

Customer and Vendor communication &

briefings in operational forums

Internal BICs

on renewed

SP & ORT

Move PP+

T&T BICs

Mar ‘15

• Renewed SP available for interface vendor testing since September 5th

• Few vendors already reported successful initial test experience

• Vendor test network monitored for any unusual alarms and/or responses

Nov ‘14

Move Internal

BICs

Customer

activities

Vendor

activities


Sender institution

• Screening engine & user interface

• Centrally hosted and operated by SWIFT

• Sanctions List update service

• Real-time

• No local software installation & integration

Sanctions Screening service

Correspondent

institution

12

2015 priorities

• Scale to handle growing user base

• Roll out new non-FIN format services

• Reduce false positives

Sanction Engine

FIN msg

Alerts

External

Sanction

Feeds


History lesson


• Water speed records

1955: 325km/h

1956: 362km/h

1957: 385km/h

1958: 399km/h

1964: 444km/h

1967: 478km/h Donald Campbell

… balancing speed with safety

Lite2 adoption • Cloud-based access infrastructure for SWIFT services

• Small footprint (PC with token), lower cost

• Access via MV-SIPN or Internet

• Variants

– ARG (Alliance Remote Gateway)

• SAA retained at customer premises, SAG functionality via Lite2

– Lite2 Lifeline

• Customer’s own infrastructure used in normal operation

• Lite2 activated in event of customer issue

• General availability since 2012

14 Operations update – SOFE 2014

Lite2 status and priorities

• Availability targets met or exceeded YTD

• Challenges and priorities

– Rapid growth has increased complexity of topology

– Configuration and customisation

– Focus on scalability in 2015


MIRS description

16

MIRS is a generic RTGS, used for failover recovery

RTGS System

Direct Participant

Direct Participant

Direct Participant

Retail ACH

Securities CSD

Small Bank

Small Banks

MIRS

• Payment Instruction • Payment Notification

• Payment Instruction • Payment Notification

MIRS

• MIRS is a generic RTGS system for RTGS operators and their participants

• MIRS guarantees the correct starting balance, at point of failure

• MIRS ensures seamless transition to the processing of outstanding FINCopy transactions, from the point of failure

• MIRS is capable of processing and settling payment transactions, on a high-capacity basis

• MIRS is technologically, staff and geographically diverse from the existing RTGS system

• MIRS and SWIFT Messaging are independent store from existing RTGS system

• Participants continue to send and receive payment instructions and notifications, as normal

• RTGS operator acts as the business manager, whilst SWIFT provides the technical infrastructure Operations update – SOFE 2014

MIRS implementations

MIRS

UK

CHAPS

MIRS for BoE

Live since February 2014

MIRS second customer

Planned go live June 2015

MIRS third customer (4 currencies)

Planned go live November 2016

17


HSM replacement: rollout status

18

Customers are recommended to complete

installations within 2Qs of the shipment date

SWIFT and SafeNet are actively monitoring the quality of HSMs

• Total number of units received at SWIFT : 3730

• Number of failures found at SWIFT : 33

• Total Customer Shipments : 3370

• Total Customer Installations : 1672

• Number of returned(failed) units : 17

As of 24 Oct 2014



Disks: traditional configuration

• Internal disks used for booting media

• External arrays for persistent data storage


Root disk (vg00)

Storage Array

Data: files, databases

Fibre

switch

Fibre

switch

External disk configuration

• All software and data on external media

• Faulty disks are automatically rebuilt

• Storage SPOFs eliminated

• Low-level actions (no system overhead) on failure

• Cost consideration (approx. 30% more expensive)


Root disk (vg00)

Storage Array

Data: files, databases

Fibre

switch

Fibre

switch

Virtualisation technologies


0

200

400

600

800

1000

Operating System

Shared I/O & Network

VM VM

VM VM

Virtualisation

• Efficient use of hardware resources

• Reduced lead time for deployment

• Segregation and logical security


• Maintenance overhead

• Concentration risk

• Increased process complexity

Supporting services Monitoring platforms

Lite2 SWIFT for India

MIRS


Why ???


Competency

Care

Processes: enforced rigor


Consistency

Repeatability

Quality

Discipline

Monitoring & control

Presentation title – dd month yyyy – Confidentiality: xxx 27 27 27

System and Network Status checks

Investigate issues/alarms and events

Three CCCs following the sun with each full Command and Control

Escalate to the DM when necessary

CCC US CCC NL CCC HK

Implement Changes

15:00GMT – 23:00GMT 07:00GMT – 15:00GMT 23:00GMT – 07:00GMT

Mission Control - Handover

CCC NL

CCC HK

Handover/TODER tool

Checklist tool

SalesForce

CCF Tool

Duty Manager Service Teams

Watchdogs UNIX

(OMS)

Network

(SMARTS)

FIN/MF

(ANDES)

Daily Briefing NL/US

- SO Mgt

- SDG (L2) Mgt

Service Operations

Monitoring & Control Process


TOTP November 2014

Typical Operator dashboard

Traffic monitoring 29

Application level monitoring

E2E flow monitoring


Thank you

Economy & Finance

Operations update