Recent FDIC commentary is sending a clearer signal — a zero-risk posture toward innovation isn’t the same as a safe and sound approach.
Recent FDIC commentary is sending a clearer signal to financial institutions — a zero-risk posture toward innovation isn’t the same as a safe and sound approach.
The better path is to move forward with a technology-neutral, risk-based approach helping institutions realize value while governing risk appropriately.
That matters because many organizations remain stuck between two unhelpful positions. One is analysis paralysis. The other is blind trust. Neither one prepares an institution to move forward securely.
What the FDIC signal means
The late March 2026 FDIC testimony, Innovation At The Speed Of Markets: How Regulators Keep Pace With Technology, reinforces a broader message institutions shouldn’t ignore. Financial institutions are being encouraged to adopt innovation, including AI and fintech partnerships, without unnecessary supervisory friction when risks are well governed.
That doesn’t mean institutions should chase technology for its own sake. It means doing nothing is no longer the safest reading of the environment. Institutions need to strengthen the foundation allowing them to evaluate and use new capabilities responsibly.
Where financial institutions often have gaps
- Vendor management programs not built to account for embedded AI and downstream third-party dependencies
- Risk management frameworks not addressing validation, monitoring, and accountability for AI-enabled activities
- Cybersecurity and information security controls not fully accounting for employee use of public generative AI tools
- Data practices not aligned to the specific data sets an institution plans to use for AI-supported outcomes
- Leadership and staff literacy gaps leading different stakeholders to mean different things when they say AI
Why data belongs in the conversation
Institutions don’t need perfectly cleansed enterprise data before they begin moving forward. That standard would leave many organizations frozen in place. What they do need is
- A practical understanding of the data they plan to use,
- How that data should be normalized,
- How reliable it is for the intended purpose, and
- What controls should surround it.
Useful AI depends on context, fit-for-purpose data, and clear oversight. In many cases, the issue isn’t whether the institution has perfect data. It’s whether the institution understands the quality and limitations of the data it plans to rely on.
Why cyber, validation, and human oversight matter for financial institution innovation
Cybersecurity should be part of this conversation from the beginning. As institutions expand employee use, adopt AI-enabled vendor capabilities, or automate workflows, they are also changing how information is accessed, shared, monitored, and protected. Identity and access management, acceptable use, data loss prevention, monitoring, and incident response all become more important.
Human-in-the-loop expectations and validation are equally important. AI can support analysis, pattern recognition, and productivity, but institutions still need people accountable for interpretation, escalation, and decision making. That is why governance, validation, and literacy should mature before institutions spend too much time debating a specific tech stack.
A better path forward
The strongest institutions avoid both analysis paralysis and blind trust and move deliberately. They align innovation to strategy, strengthen vendor oversight, mature their data and cyber practices, and build the control environment needed to support responsible experimentation.
This blog is one of three in a CLA series on moving forward securely with AI. The companion posts focus on AML/BSA use cases and broader promising starting points across the institution.
How CLA can help financial institutions with innovation
CLA works with financial institutions as they evaluate innovation, governance, vendor oversight, cybersecurity, and data readiness so they can move forward with a risk-based, technology-neutral approach aligned to strategy.