Banks especially large banks ask a lot of question during their duedil process but there is a common theme. Complete awareness of security requirements and data protection laws needs to feed to design. Adding security at a later stage is hard. Being able to conceptualise and raise above the detail before testing with detail use cases help create useful two step process never forgetting best practices from large cloud provides.