SAMA-licensed clients
12banks & fintechs
From core-modernization to fraud detection to Open Banking integration — engineered for SAMA-licensed entities, where compliance is the floor and speed is the differentiator. We've sat on both sides of the regulator's desk.
Six pressures we hear from CFOs, CTOs, and Heads of Risk on every first call.
The regulator publishes new circulars on a quarterly cadence — Open Banking, Cyber, Counter-Fraud, ESG — and expects implementation, not interpretation. Compliance is no longer an annual exercise.
Most tier-1 banks still run cores from the late 90s. Modernization without a "big bang" — strangler patterns, event sourcing, side-by-side ledgers — is the only realistic path forward.
Cards, instant payments, e-wallets, and Open Banking AISP/PISP create attack surface in places risk teams haven't historically watched. Detection has to land in milliseconds — not overnight batch.
SAMA's OBF is live. AISP and PISP onboarding requires standardized APIs, FAPI-compliant security, and consent management most cores were never designed to support.
The Kingdom is producing world-class talent fast — but demand outpaces supply. Saudization targets and the AI/data stack arms race are pulling from the same shallow pool.
Saudi consumers compare banking apps against TikTok and STC Pay, not against other banks. UX latency, Arabic NLU, and instant onboarding are the new table stakes.
Same disciplines, sector-tuned. Each service rebuilt around SAMA's specific posture and the operational shape of a regulated bank.
Risk, AML, segmentation, and credit-decisioning models trained on Arabic transaction memos, Saudi calendar effects, and Hijri seasonality.
Customer-service, dispute-resolution, and underwriter copilots — Arabic-fluent, fully audited, with hand-off to humans on policy.
Branch-network analytics, KYC document forensics, ATM-channel security, and signature verification at scale.
Sovereign cloud landing zones, SAMA data-residency compliance, and the SRE practice that keeps a payments rail at four-nines.
SAMA CSF maturity uplift, zero-trust architecture, sovereign SOC, and incident response with regulator-grade reporting.
Stream-native fraud platform: feature store, decision engine, case-management, and the regulator submission pipeline behind it.
Two engagements that anchor our banking practice. Names redacted under MNDA — the regulators know the work.
Replaced a nightly-batch fraud engine with a stream-native platform: ~8K transactions/sec at peak, sub-300ms decisions, and a feature store shared across cards, transfers, and Open Banking flows. SAMA Counter-Fraud submission accepted on first review.
Greenfield onboarding flow built on SAMA OBF: AISP-pulled income verification, automated KYC with vision-based document forensics, and an Arabic-first conversational journey that compresses median onboarding from 11 minutes to 92 seconds.
Hyperscalers, core providers, regulator-blessed partners. We are vendor-honest and integrate the stack you've already chosen.
Yes — we are registered as a technology service provider with multiple SAMA-licensed entities and have been through SAMA outsourcing reviews on four engagements to date.
All client data stays in-Kingdom. We deploy to AWS Bahrain, Azure UAE-North, Google Dammam, or sovereign on-prem depending on the client's posture. Cross-border data transfer is documented in every engagement and approved per PDPL.
Yes. We've drafted, defended, and revised submissions for CSF self-assessment, Counter-Fraud frameworks, and OBF accreditation. Our compliance team includes ex-SAMA practitioners.
Almost never. We extend it. Strangler patterns, event-sourced ledgers, and side-by-side modernization deliver outcomes faster and de-risk the path. Full replacement is a last resort, not a default.
From a six-week SAMA gap study to a multi-year platform program. Median bank engagement runs 7–11 months with a blended team of 8–14, with a heavy onshore Saudi component.
Build-to-transfer is the default. Co-located squads, joint roadmaps, and a deliberate runway to stand the platform up inside your team. We measure success on transition, not on year-five retainer fees.
Sixty-minute working session with our Banking lead. Bring the latest SAMA findings, the fraud KPI you wish was lower, or the OBF deadline you're chasing. We'll come back with a one-page roadmap.