NFRisk Non-Financial Risk advisory for regulated transformation Discuss a Mandate

Independent senior advisory for regulated transformation

Complex transformation.
Clear risk architecture.
Controlled delivery.

NFRisk helps regulated organisations and technology providers diagnose complex problems, define implementable target states, qualify appropriate solutions and provide independent assurance through design, delivery, remediation and operational readiness.

NFRisk applies a focused Non-Financial Risk lens across financial crime, data and control integrity, payments transformation and operational resilience.

Our work sits at the intersection of financial crime, data and control integrity, payments, technology and operational resilience — where fragmented ownership, weak evidence and implementation risk can undermine otherwise credible transformation.

Financial Crime Transformation Data & Control Integrity Payments Transformation Operational Resilience & Delivery Assurance

NFRisk is the principal senior advisory proposition of Resolvo Advisory.

More than 20 yearsAcross banking, payments, financial crime, data, risk and transformation.
Complete-lifecycle experienceFrom strategy and requirements through testing, implementation, remediation and early-life assurance.
International deliveryAcross global financial institutions, multiple jurisdictions and critical payment environments.
Principal-led advisoryDirect access to senior expertise, supported by selected specialists where required.

Why NFRisk

Transformation can look active while the underlying problem remains unresolved.

Programmes may mobilise, technology may be selected and remediation may begin before the organisation has established the real root cause, defined accountable ownership or agreed what successful control should look like.

The cost appears later: delayed implementationrepeated remediationweak evidenceunresolved dependenciesescalating costfragile acceptance
01

The problem is not sufficiently defined

Different stakeholders hold different views of the cause, scope or required outcome.

02

Technology is moving ahead of requirements

A solution is being selected before business, data, control and operational expectations are clear.

03

Delivery is active but confidence is weak

Progress reporting shows activity while ownership, dependencies, readiness or evidence remain unresolved.

04

The outcome cannot yet be trusted

Testing, data integrity, operational resilience or control evidence are insufficient to support implementation or closure.

Review how NFRisk works

Capability architecture

Four pillars. One integrated advisory practice.

NFRisk is grounded in Non-Financial Risk and concentrates on the points where financial crime, data and control integrity, payments, technology and operational resilience create material risk during transformation. The four pillars reflect the capabilities in which NFRisk has the strongest evidence and practical experience. Each can support a focused mandate; the greatest value often comes from connecting issues that conventional programmes address separately.

01

Financial Crime Transformation

Senior advisory across transaction monitoring, KYC/CDD, sanctions and screening, financial-crime data, remediation, operating models, workflows, governance, controls and implementation assurance.

Connecting regulatory intent with usable processes, trusted data, effective controls and sustainable operating outcomes.

03

Payments Transformation

Support from early definition and non-functional requirements through architecture, integration, reconciliation, regulatory and scheme alignment, testing, critical-supplier readiness and implementation.

Payments change is only credible when business, technology, data, controls, resilience and operations move together.

04

Operational Resilience & Delivery Assurance

Independent challenge across critical processes, third-party dependencies, failure scenarios, recovery, testing, operational readiness, remediation and programme recovery.

Determining whether transformation is complete, executable and sustainable under real conditions.

AI and Automation AssuranceSolution and Vendor QualificationOperating-Model and Control DesignProgramme Assurance, Remediation and Recovery

Together, these capabilities support controlled transformation and assured outcomes.

Positioning

Between the organisation’s problem and the solution intended to address it

Regulated organisations understand their strategic and regulatory objectives. Technology and delivery providers bring software, data, engineering and implementation capability. The critical gap is often the independent senior judgement required to connect the two.

Is the right problem being solved?

Is the proposed solution appropriate?

Are material requirements and controls addressed?

Can implementation be trusted?

NFRisk does not begin with a predetermined technology recommendation. The starting point is the problem, the required outcome and the evidence needed to support a credible decision.

Commercial services

What clients can engage NFRisk to deliver

NFRisk engagements are senior-led, clearly scoped and designed around a defined decision or outcome. Each service can stand alone. Follow-on work is separately agreed and recommended only where justified.

01

Structural Risk and Transformation Diagnostic

For complex or disputed problems where clarity is needed before committing to major transformation, technology or remediation.

Typical outcome Root causes, ownership, material risks, intervention options and an executive roadmap.
Discuss this service →
02

Financial Crime Data and Control Integrity Diagnostic

For TM, screening, KYC/CDD or remediation environments where decision-critical data must be demonstrably complete, correct and controlled.

Typical outcome End-to-end data journey, integrity-risk assessment, control gaps, ownership and remediation priorities.
Discuss this service →
03

Transformation and Programme Assurance

For active programmes requiring independent challenge across requirements, design, delivery, testing, readiness, remediation or recovery.

Typical outcome Evidence-based assurance, decision points, readiness findings and priority interventions.
Discuss this service →
04

Payments Transformation and Readiness Review

For payment change where requirements, integration, reconciliation, resilience, suppliers, testing and operational acceptance must be assessed together.

Typical outcome Readiness assessment, control and dependency findings, delivery risks and a practical route to implementation.
Discuss this service →
05

Technology Proposition and Bank-Readiness Review

For providers whose products, use cases and implementation models must withstand regulated-client scrutiny.

Typical outcome Clearer proposition, qualified use cases, data and control requirements, and proceed / revise / stop recommendations.
Discuss this service →
06

Fractional Senior Advisory

Retained access to senior financial-crime, data, payments, resilience or transformation expertise without appointing a full-time executive or large consulting team.

Typical structure Defined monthly commitment, clear access model, agreed scope and controlled additional work.
Discuss this service →

Who we help

Different starting points. One standard of senior challenge.

Regulated organisations

Diagnose the real problem, define the right intervention and independently assure delivery.

NFRisk supports banks, payment institutions, regulated fintechs and other financial organisations facing complex transformation, remediation, technology or control decisions.

Typical sponsors: COOs, CROs, CDOs, CIOs, MLROs, Heads of Payments, Transformation Directors and programme sponsors.

Discuss a mandate →
Technology & delivery providers

Turn technically credible capabilities into bank-ready propositions.

NFRisk helps RegTech, FinTech, payments, data, workflow, AI and implementation providers strengthen use cases, requirements, controls, client engagement and implementation readiness.

The role is not simply sales support. It is senior banking-domain, control and delivery challenge.

Discuss bank-readiness →
Professional & ecosystem partners

Combine complementary expertise through clearly defined and commercially clean roles.

NFRisk works with selected consulting firms, specialists, introducers and delivery partners where responsibilities, independence, contribution and commercial arrangements are explicit.

Partnership does not dilute accountability: the role, client, payment model and delivery boundary remain visible.

Discuss a partnership →

How NFRisk works

A controlled path from uncertainty to implementation

NFRisk can enter at any point in the lifecycle. The approach remains consistent: establish the real problem, define what must be true, assess the solution and independently challenge the resulting delivery.

01

Diagnose

Actual problem · root causes · risk exposure · ownership · priorities

02

Define and Design

Requirements · target state · operating model · controls · data needs · success criteria

03

Select and Mobilise

Options · provider assessment · solution fit · delivery model · governance · mobilisation

04

Assure and Remediate

Delivery challenge · testing · readiness · implementation · remediation · closure · executive evidence

The outcome may be a targeted intervention, broader transformation, additional specialist support or a recommendation not to proceed. NFRisk’s role is to provide a defensible basis for decision-making — not to create unnecessary dependency.

Selected evidence

Experience behind the proposition

NFRisk is built on direct experience across complete transformation lifecycles in global banking and critical payment environments. The examples are anonymised and describe prior personal experience; they do not imply endorsement by former employers or clients.

Financial crime · data integrity

Global transaction-monitoring data integrity and controls

Led the development and strengthening of transaction-monitoring data strategy and controls across a complex multi-jurisdiction banking environment, connecting source systems, data platforms, transformation layers and monitoring capabilities.

Relevant to:Financial Crime Transformation · Data & Control Integrity
Payments · programme assurance

End-to-end UK Faster Payments delivery

Served as project manager and led key components of a major UK Faster Payments capability, covering requirements, architecture coordination, non-functional requirements, testing, resilience, implementation and warranty support.

Relevant to:Payments Transformation · Programme Assurance
Payments · regulatory readiness

European SEPA transformation across 18 countries

Led major European payments transformation and programme recovery across a complex multi-country banking environment, connecting business-case approval, regulatory readiness, technology, operations, risk, governance and implementation.

Relevant to:Payments Transformation · Operational Resilience & Delivery Assurance
Resilience · supplier risk

Critical-supplier, location and concentration-risk frameworks

Designed and implemented frameworks that converted broad third-party and operational dependency concerns into practical assessment methodologies, controls, ownership and regulatory evidence.

Relevant to:Operational Resilience & Delivery Assurance
Request the detailed capability evidence portfolio

Principal-led advisory

Senior experience. Direct access.

NFRisk is a principal-led advisory practice. Clients work directly with Draz Ivezic, supported where required by selected specialists and delivery partners.

Draz is a senior banking, financial-crime, data and transformation adviser with more than 20 years of experience across global financial institutions and critical payments environments.

The differentiator is not experience in a single risk category. It is the ability to connect business need, data, controls, technology, operations and delivery across the complete transformation lifecycle.

Request the executive profile →

Experience spans

  • Strategy and target operating models
  • Business and non-functional requirements
  • Financial-crime transformation
  • Data integrity and control frameworks
  • Payment architecture and implementation
  • Solution and vendor assessment
  • Testing and operational readiness
  • Regulatory and audit remediation
  • Operational resilience
  • Programme recovery and early-life assurance

Career experience includes work across ING, HSBC, Santander, Barclays, NatWest/RBS, Lloyds and VocaLink/Mastercard.

Specialist proposition

Decision-critical data.
Complete. Correct. Controlled.

DQIntegrity is the specialist data and control integrity proposition of Resolvo Advisory, delivered within the wider NFRisk advisory architecture.

It helps regulated organisations establish whether data used in transaction monitoring, sanctions screening, KYC/CDD, payments, reporting, analytics and AI remains complete, correct, timely, understood and controlled throughout its end-to-end journey.

Integrity questions

  • Did we receive the full population expected?
  • Are critical fields complete and correct?
  • Are mappings and transformations controlled?
  • Can exceptions be owned, resolved and evidenced?
  • Can senior stakeholders rely on the resulting output?

Next step

A complex mandate should begin with clarity.

NFRisk works with organisations and providers facing material decisions across financial crime, data, payments, technology and operational resilience.

An initial confidential discussion establishes the context, urgency and potential fit. Substantive diagnosis, workshops and advisory work are separately scoped.