A version of this interview was first published on Cyber News on 6 March 2022.
To discuss the current environment, existing risks for organisations, and their prevention methods, we interviewed Gabriel Hopkins, the Chief Product Officer of Ripjar – a company that designs products for detecting risk and preventing financial crime.
Let’s go back to the very beginning of Ripjar. How did this project come about, and what has your journey been like since?
The five founders of Ripjar met while working at the United Kingdom’s Government Communications Headquarters – the intelligence and security organisation known as GCHQ. Collectively they spent many decades in that environment and built up a huge amount of technical expertise in the process, including exposure to a wide range of technologies that can be used to make sense of structured and unstructured data.
Initially, Ripjar helped private and public organisations make sense of social media data, understanding political, intelligence, and commercial signals in vast quantities of data. Over time, the company diversified and started supporting many types of clients. Today Ripjar helps banks and other large enterprises around the world leverage complex data to understand risk and identify crime.
Challenges and Solutions
Can you tell us a little bit about what you do? What are the main challenges you help navigate?
Our mission is to help governments and organisations automate the detection, investigation, and monitoring of criminal activity. We have two main products – Labyrinth Screening and Labyrinth Intelligence.
With Labyrinth Screening, we absorb structured watchlists and sanctions data alongside large quantities of unstructured news and media data – generally over 3 million articles every day. We use advanced analytic and machine learning techniques to make sense of all the data and help counter financial crime.
Our clients want to know when their customers match against a watchlist or when there is media that highlights criminal or other problematic activity. For example, when onboarding a new customer – either an individual or a company – there might be found that there is a report of bribery.
Labyrinth Intelligence is our solution for data fusion and analysis, and it gets used for a huge variety of applications – from law enforcement to cyber security investigations. There are several key capabilities that make the solution powerful. Our clients often have data in 10s or even 100s of different systems. We’re able to help them pull data in or access it in a place with all those sources. Then, a range of analytics, tools, and flexible workflows are available to explore, investigate patterns in the data, and provide meaningful outputs.
Our Labyrinth Intelligence clients are searching for patterns and connections in their data. Using powerful search techniques, entity link charts, maps, and other visualisations, they can surface the pertinent facts about suspects in a criminal investigation, transactions related to money laundering, or data compromises after a cyber incident. Clients working with the system supplement the inferences and knowledge from their investigations which are then encoded within the system’s object store to support further investigations.
The system can deal with different classifications of data and air-gapped low and high-side systems, which is essential for many of our customers.
What technology do you use to detect and analyse criminal activity?
There is a range of tools and technologies within the product to address different requirements. To make sense of unstructured data, we utilise machine learning classifiers trained on data from over 20 different languages.
Our entity and identity resolution are critical across all our solutions. Having reviewed the available tools, we determined that we needed to build out our technology which avoids a lot of the pitfalls of legacy approaches and enables us to match across scripts and colloquial name variations, such as Robert, Rob & Bob, in a wide range of languages.
Similarly, Ripjar has created proprietary object linking and graphing technology used to discover and encode knowledge within the system. The technology is used to automatically derive summaries of people and entities within the latest version of our screening solution, which massively simplifies the task of analysts reviewing matches.
What are the most common problems companies can run into if appropriate data intelligence solutions are not in place?
Amazingly, we often find ourselves using the common Donald Rumsfeld phrase “unknown unknowns” to talk about those things which an organisation doesn’t know but could be critical for them. In practice, there are many missed opportunities to detect, disrupt, and respond to criminal and national security threats.
The equation can be complex, but what we’ve seen over the last ten years is organisations accumulating large quantities of often siloed data that go unused because of inadequate technology and a related loss of corporate knowledge through failing to capture and share information in a structured way.
From a banking perspective, we see “unknown unknowns” surfacing regularly, often accompanied by weighty fines. In the UK, the fines amounted to about £500M in 2021. In many of the fines, the organisations had the information they needed, but they were not seeing it clearly. By identifying risky counterparties early – both with new and existing customers – and by pulling together data from across a bank, screening, and intelligence tools turn “unknown unknowns” to “known knowns” and making it simpler for them to do good business.
Outside of banking, the risks can be even more severe, and again, the ability to connect existing data together in the right way shines a light on where policing and governmental organisations should focus their attention.
Would you like to share some of the key takeaways from your recently published guide on adverse media?
The guide is intended to fill in the gaps for those interested in adverse media but would like to know more. Companies everywhere are trying to figure out how to use modern technology and massive quantities of data to understand business risks as they emerge. The guide explains exactly how to do that.
We’ve partnered with Ray Blake from The Dark Money Files – an organisation dedicated to fighting against money laundering and financial crime through education, awareness, and frequent enthralling storytelling.
The result is a simple-to-read, comprehensive overview of everything you need to know – why you should screen against adverse media, which media to use, how to interpret the results, how to use automation, and much more.
And finally, what’s next for Ripjar?
Nothing quite beats in-person meetings, and we’re very excited to see the world opening up again. We were able to see some of our mainland Europe clients face-to-face late last year, and we are looking forward to visiting with clients further afield.
Ripjar’s history so far has been built on innovation, and we know that we need to continue to innovate to provide next-generation capabilities to clients. We are working on some exciting new developments in both our Screening and Intelligence products which will super-charge both solutions and empower the analysts that use them.
As the pandemic hopefully ends, we’re looking forward to the chance to help clients across all sectors – and particularly in banking – to combine and make sense of their own data and other data sources to control risk and fight criminal activity.