Core Banking Augmentation Software for Banks across the UAE
Custom core banking augmentation software for UAE banks - designed to sit alongside Infosys Finacle, Oracle FLEXCUBE, Temenos Transact, TCS BaNCS, Mambu, and Thought Machine Vault cores. Closes gaps on Decree-Law 6 of 2025 transition, Aani and Jaywan integration, Open Finance consent, Article 149 fraud prevention, and Arabic document generation without touching the core ledger.
Why tier-1 UAE banks augment rather than replace core
UAE banking sector assets reached AED 5.4 trillion at end-2025, up from AED 4.56 trillion at end-2024. Emirates NBD runs Infosys Finacle consolidated across seven countries on Red Hat OpenShift; Mashreq runs Oracle FLEXCUBE after a 160+ application consolidation; Wio runs Mambu on Microsoft Azure. Core platforms work. The gaps are UAE-specific layers above the core.
Decree-Law 6/2025 transition demands systematic evidence
Federal Decree-Law No. 6 of 2025 replaced the 2018 CBUAE Law and the 2023 Insurance Law, with all in-scope institutions required to align operations by 16 September 2026. AED 1 billion maximum administrative fines, Article 62 emerging-technology perimeter, and Article 149 fraud obligations together make the transition a structural programme, not a documentation update.
Aani and Jaywan integration sits above the core
Aani crossed 12.5 million users and 774,000 merchants in Q1 2026 with 3-second average transaction times. Jaywan issuance mandated by CBUAE from Q2 2024 is now broadly rolled out. Connecting to Al Etihad Payments rails without stretching the core requires a dedicated integration layer.
Article 149 fraud obligations are customer-facing
Decree-Law 6/2025 Article 149 requires proactive customer notification of security breaches or fraud incidents and close cooperation with CBUAE on fraud data and patterns. Authorised push payment fraud and social engineering scams need orchestrated customer-facing friction and real-time intervention - capabilities most cores do not ship natively.
Open Finance consent cannot live inside the core
The CBUAE Open Finance framework uses a centralised API Hub operated through a CBUAE-aligned entity with a standalone Consent and Authorisation Manager. Banks as deemed licensees must obtain a No Objection Certificate before providing Open Finance services. Consent workflow is a new product surface, not a core module.
Core augmentation designed around UAE regulatory reality
Four capability areas that sit alongside incumbent core platforms - closing UAE-specific gaps without touching the system of record.
Decree-Law 6/2025 transition layer
Evidence capture for licensing, governance, Article 62 emerging-technology perimeter, and ESG disclosure obligations. Readiness tracked against the 16 September 2026 deadline at item level. CBUAE early-intervention data requirements met through structured artefacts.
Aani and Jaywan integration orchestration
Request-to-pay, e-direct-debit, P2P transfer, merchant QR, and Jaywan card issuance flows orchestrated above the AEP rails. ISO 20022 message handling, per-institution limits, and customer journey wrappers sit in the layer, not in the core.
Article 149 fraud and APP-scam orchestration
Real-time intervention on authorised push payment fraud and social engineering attacks. Customer-facing friction flows, breach notification automation, and CBUAE fraud-data reporting handled as orchestrated workflow alongside NICE Actimize, Quantexa, or bank-owned fraud engines.
Open Finance consent and TPP management
Consent Manager integration aligned to CBUAE Common Infrastructural Services. TPP relationship management, Nebras API Hub conformance, data-scraping prohibition enforcement, and Open Finance No Objection Certificate evidence captured as by-product of operations.
Total UAE banking sector assets at end-2025, up 12% year-on-year from AED 4.56 trillion at end-2024 - the largest banking sector in the Middle East by a wide margin.
Where the augmentation layer sits against the mandate.
A compliance view shows the augmentation layer's readiness against the Decree-Law 6/2025 requirements due by 16 September 2026. Licensing evidence, Article 149 fraud controls, Aani and Jaywan integration, and Open Finance consent all tracked as operational metrics rather than documentation status.
Discuss your core augmentation scopeWhy augmentation beats replacement at UAE banks.
The numbers behind why UAE tier-1 and tier-2 banks are investing in augmentation layers rather than running multi-year core replacement programmes.
Talk to us about core banking augmentation.
A short call surfaces whether augmenting your core platform makes sense for your bank. Working with your IT, risk, compliance, and product teams during discovery, we walk through current core stack, Decree-Law 6/2025 readiness, Aani and Jaywan practice, and Open Finance approach. If discovery reveals the problem is process rather than software, we say so.
How core banking augmentation actually works for UAE banks
The detail behind the headline - from the transition-readiness layer and Aani orchestration, through Article 149 fraud, to the Open Finance consent and TPP management that sit alongside the core without replacing it.
What changes, in practical terms
UAE banks running stable Finacle, FLEXCUBE, Transact, or Mambu cores gain more from a surgical augmentation layer than from a multi-year replacement. The gaps are UAE-specific - the core is a global platform.
The detailed questions UAE bank IT leaders ask
Expand each to see how bespoke core augmentation actually works.
What does core banking augmentation actually cover?
Six connected capability areas: (1) Decree-Law 6/2025 transition layer with evidence capture and item-level readiness tracking. (2) Aani and Jaywan integration orchestration above AEP rails. (3) Article 149 fraud and APP-scam orchestration with customer-facing friction flows. (4) Open Finance consent and TPP management aligned to CBUAE Common Infrastructural Services. (5) Arabic document layer for deposit, credit, and customer communication templates. (6) Leadership dashboards for core platform health, transition progress, and integration status.
Around those six, most banks also want: UAE PASS identity integration alongside the bank's own authentication, Al Etihad Credit Bureau data flows into onboarding and lending, and Takaful product hooks where the bank operates an Islamic window.
How is augmentation different from core replacement?
Core replacement - moving from Finacle to Mambu or FLEXCUBE to Thought Machine Vault - is a multi-year programme with significant implementation cost and material execution risk. For stable cores serving the bank effectively, replacement lift often exceeds value recovered over a realistic timeframe.
Augmentation keeps the core, adds a surgical layer above it, and closes UAE-specific gaps without the replacement lift. Emirates NBD's seven-country Finacle consolidation, Mashreq's FLEXCUBE rollout across 160+ legacy applications, and Wio's cloud-native Mambu build each required years. The augmentation layer moves forward with the core through any future replacement because the UAE-specific gaps persist.
How does the Decree-Law 6/2025 transition layer work?
Federal Decree-Law No. 6 of 2025 applies from 16 September 2025 with a transition to 16 September 2026. Licensing evidence, governance documentation, Article 62 emerging-technology perimeter mapping, Article 149 fraud-prevention evidence, and ESG disclosure frameworks need to be in place before the deadline.
The layer tracks readiness against configurable item sets. Leadership sees item-level status rather than Excel-based progress reports. Existing regulations issued under the 2018 CBUAE Law and 2023 Insurance Law remain in force until formally replaced - the platform supports both frameworks in parallel through the transition.
How does Aani and Jaywan integration orchestration work?
Al Etihad Payments operates Aani (instant payments) and Jaywan (domestic card scheme) as subsidiaries of CBUAE. Aani uses ISO 20022 messaging with direct and indirect participation models. Jaywan operates with co-badging across Discover, Mastercard, UnionPay, and Visa and supports Samsung Wallet with Apple Pay and Google Pay in progress.
The orchestration layer handles request-to-pay, e-direct-debit, P2P transfer, merchant QR, and Jaywan card issuance customer journeys. AEP format changes and new features (cross-border corridors, electronic direct debit, e-cheques) are absorbed as configuration rather than core releases. Per-institution limits, sub-limits, and fraud controls sit in the layer.
How does Article 149 fraud orchestration work?
Decree-Law 6/2025 Article 149 requires proactive customer notification of security breaches or fraud incidents and close cooperation with CBUAE on fraud data and patterns. Authorised push payment fraud, impersonation scams, investment scams, and account takeover are the focus areas.
The orchestration layer runs real-time intervention on suspicious flows - customer-facing friction for high-risk transfers, breach notification automation, and fraud-data aggregation for CBUAE reporting. Fraud engines like NICE Actimize or Quantexa provide the detection signal; the layer handles the customer and regulator-facing workflow on top.
How does Open Finance consent and TPP management work?
CBUAE Open Finance is Phase 1 live, covering banks and insurers. The framework uses a centralised API Hub operated through a CBUAE-aligned entity (publicly referenced as Nebras), a Trust Framework, and a Consent and Authorisation Manager exposed as a standalone user app. TPPs including Tarabut Gateway, Lean Technologies, Fintech Galaxy, and Brankas operate on top.
The augmentation layer provides consent lifecycle management, TPP relationship management, data-scraping prohibition enforcement, and CBUAE No Objection Certificate evidence capture. Open Finance scope covers current and savings accounts, credit cards, personal and auto loans, mortgages, overdrafts, and insurance products.
What does this sit alongside in a typical UAE bank stack?
Here's where custom core augmentation typically sits in a wider stack.
Core banking platforms - we sit alongside Infosys Finacle (Emirates NBD consolidation; Emirates Islamic), Oracle FLEXCUBE (Mashreq legacy consolidation), Temenos Transact, TCS BaNCS, Mambu (Wio Bank on Microsoft Azure), and Thought Machine Vault.
Digital engagement - we integrate with Backbase, Finacle Digital, Oracle Banking Digital Experience, Red Hat OpenShift (Emirates NBD Sahab), and custom React and Flutter front-ends on top of Mambu.
Payment rails and identity - we orchestrate with Al Etihad Payments for Aani and Jaywan, Network International and Magnati for acquiring, and UAE PASS, Emirates ID, and Al Etihad Credit Bureau for identity and credit.
Integration approach is scoped during discovery. We don't ask you to rip and replace anything that works.
How long to go live, and what does it cost?
Discovery runs six to eight weeks. Working with your IT leadership, risk, compliance, product, and payments teams, we map current core stack, Decree-Law 6/2025 readiness, Aani and Jaywan integration, Article 149 fraud practice, and Open Finance approach. Output is a detailed report covering current-state map, augmentation architecture, integration scope against the core, phased implementation plan, and fixed-price build proposal.
Build for an initial augmentation layer runs sixteen to twenty-four weeks from discovery completion. Full transition-readiness, Aani and Jaywan orchestration, Article 149 workflow, and Open Finance rollout phases in over twelve to twenty-four months depending on core platform count and product mix.
Pricing varies materially by core stack, integration breadth, and product scope. A bracket isn't published; discovery produces a fixed-price proposal with no obligation to proceed.
How each role experiences the change
Different roles feel different problems on a core stack. Augmentation works when it reduces friction for each one.
Chief Information Officer / Head of Technology
Core platform preserved. UAE-specific gaps closed without multi-year replacement programme. Product cadence decoupled from core release cycles. Decree-Law 6/2025 transition trackable.
Head of Digital and Product
New product variants deploy through configuration. Market-response speed up. Aani, Jaywan, and Open Finance surfaces consumable rather than bolted on.
Chief Compliance Officer and MLRO
Decree-Law 6/2025 readiness captured at item level. Article 149 fraud notification workflow structured. Audit evidence captured continuously rather than assembled under pressure.
Chief Risk Officer
Emerging-technology Article 62 perimeter mapped. Operational risk dashboards integrate core platform health. CBUAE early-intervention data requirements met through structured artefacts.
Questions We Get Asked
What is core banking augmentation software?
Custom software for UAE banks that sits alongside Infosys Finacle, Oracle FLEXCUBE, Temenos Transact, TCS BaNCS, Mambu, and Thought Machine Vault cores. Closes UAE-specific gaps around Decree-Law 6 of 2025 transition, Aani and Jaywan integration, Article 149 fraud prevention, Open Finance consent, and Arabic document generation - without touching the system-of-record ledger.
How is augmentation different from core replacement?
Core replacement is a multi-year programme with significant implementation cost and execution risk. For stable cores serving the bank effectively, replacement lift often exceeds value recovered. Augmentation keeps the core, adds a surgical UAE-specific layer above it, and closes local gaps. When replacement eventually happens, the augmentation layer moves forward because the UAE gaps persist.
How does the Decree-Law 6/2025 transition layer work?
Federal Decree-Law No. 6 of 2025 applies from 16 September 2025 with a transition to 16 September 2026. Licensing evidence, governance documentation, Article 62 emerging-technology mapping, Article 149 fraud evidence, and ESG disclosure need to be in place. The layer tracks readiness against configurable item sets with leadership visibility at item level.
How does Aani and Jaywan integration work?
Al Etihad Payments operates both platforms. Aani uses ISO 20022 messaging; Jaywan operates with co-badging across Discover, Mastercard, UnionPay, and Visa. The orchestration layer handles request-to-pay, e-direct-debit, P2P, merchant QR, and Jaywan card issuance customer journeys above the AEP rails. AEP format changes are absorbed as configuration rather than core releases.
How does Article 149 fraud orchestration work?
Article 149 requires proactive customer notification of security breaches or fraud incidents and close CBUAE cooperation on fraud data. The orchestration layer runs real-time intervention on authorised push payment fraud and impersonation scams - customer-facing friction flows, breach notification automation, and fraud-data aggregation. Detection engines provide the signal; the layer handles customer-facing and regulator-facing workflow.
How does Open Finance consent and TPP management work?
CBUAE Open Finance is Phase 1 live. The framework uses a centralised API Hub (publicly referenced as Nebras), a Trust Framework, and a Consent and Authorisation Manager. The augmentation layer provides consent lifecycle management, TPP relationship management aligned to Tarabut Gateway, Lean Technologies, and Fintech Galaxy, and CBUAE No Objection Certificate evidence capture.
How long to go live, and what does it cost?
Discovery takes six to eight weeks due to core platform assessment scope. Initial augmentation build runs sixteen to twenty-four weeks. Full transition-readiness, Aani/Jaywan orchestration, Article 149 workflow, and Open Finance rollout phases in over twelve to twenty-four months depending on core stack and product mix. Pricing varies materially by scope, so a bracket isn't published.
Let's Discuss Your Project
Fill in the form, message us on WhatsApp, or send an email.
Quick Assistance
Chat with us directly on WhatsApp.
Open WhatsApp →Email Us
Gmail, Outlook, Yahoo & more.
Choose your email app →BY BANKS L.L.C-FZ
License No. 2425027.01
Meydan Free Zone, Dubai, UAE
Procurement-ready · UAE registered