Securing Unified Payment Service Against Online FraudNPCI's CISO Bharat Panchal Discusses Authentication, Other Key Issues
The more than 52 banks migrating to National Payment Corporation of India's Unified Payments Interface service to enable customers make easy online funds transfers face the risk of increasing online fraud as well as integration challenges because the service must interface with core banking technologies.
See Also: Threat Intelligence - Hype or Hope?
In a video interview at Information Security Media Group's recent Fraud and Breach Prevention Summit in Bengaluru, Bharat Panchal, senior vice president, head of risk management and CISO at National Payment Corporation of India, clears up the ambiguity surrounding UPI. He explains that the platform uses a multi-factor authentication mechanism and a virtual payment address.
In the interview about UPI, he also discusses:
- How customers' digital identities are protected at the design level through virtual payment address and multifactor authentication standards;
- Risk mitigation procedures at the application level;
- The simplified authentication process.
At NPCI, Panchal is responsible for monitoring, evaluating and implementing improvements of risk management controls and governance areas, including enterprise risk management, operational risk management, information security and internal audit and fraud management. He establishes ownership for risk management activities across the organization and partners with member banks to ensure efficiency and effectiveness of operations, safeguard tangible and intangible assets and ensure the accuracy and integrity of transactions and processes. Previously, Panchal worked for Kotak Mahindra Bank, Citi, Reliance Communications and Avaya Global.