Rothschild & Co SaaS Transition Case Study

This case study outlines Rothschild & Co's transition from Moody's on-premise solution to a SaaS model, driven by the complexities of implementing Basel regulations and the need for modernization. The document details the key considerations during the migration process, including due diligence, legal frameworks, and shared security responsibilities. Rothschild & Co's Information Security Team recommended early inclusion of security considerations to ensure a thorough assessment. The case study describes the due diligence phases followed by Rothschild & Co when selecting Moody's as a SaaS vendor, which included preliminary checks, arbitration committee involvement, and negotiations focusing on security and compliance. It emphasizes the importance of a centralized change management process to oversee the transition and maintain operational continuity. The shared responsibility model is discussed, clarifying the security and compliance obligations of both the bank and the SaaS provider. The document concludes by highlighting the strategic partnership between Rothschild & Co and Moody's, aimed at achieving regulatory excellence and innovation.