powershelldba.de

SQL Server 2025 from a Banking Perspective

A bank does not evaluate a database release by its feature list. It evaluates it by the questions the auditor will ask afterward: where does the data go, who can reach it, can we prove what happened, and can we undo it. Here is SQL Server 2025 read through that lens.

About this article: SQL Server 2025 is a new release and several capabilities below went through a public preview cycle; availability can depend on edition, compatibility level, and configuration. Nothing here is legal or regulatory advice — the applicable requirements (DORA, MaRisk, BCBS 239, GDPR, PCI DSS, national supervisory rules) depend on your institution and jurisdiction. Treat this as an engineering starting point for the conversation with your risk, compliance, and audit functions.

The Only Feature Table a Bank Really Reads

Every new database feature is attractive in a demo. In a regulated bank, the same feature has to survive a second table — the one that maps it against the control objectives an examiner cares about. Before the interesting parts of SQL Server 2025, here is the frame the rest of this article uses:

Control objective The question behind it
Data residency & boundary Where does the data physically live, and does any new feature move it outside our jurisdiction or our security boundary?
Access control Who can reach the data and the feature, with least privilege and separation of duties?
Audit trail Can we prove, after the fact, who did what and when — to an examiner, not just to ourselves?
Reversibility If a change goes wrong, is there a tested path back, and is it evidenced?
Third-party / ICT risk Does this create a dependency on an external service that belongs in the DORA register?

In-Database AI: An Opportunity That Is Actually About Data Residency

The flagship of SQL Server 2025 — a native VECTOR type with built-in similarity search — reads very differently in a bank than in a startup. For most teams it is a convenience. For a regulated institution it is primarily a data-residency and data-boundary improvement.

Until now, doing semantic search or retrieval-augmented generation over sensitive records usually meant shipping embeddings of that data into a separate, often cloud-hosted, vector store. For a bank that is a data-classification event: customer data leaving the system of record, a new processor to contract and audit, a new place for a breach to happen. Keeping the embeddings in a VECTOR column means they inherit the database's existing encryption, access control, backup, and audit — no second boundary to defend.

The upside for compliance: the embedding of a sensitive document stays under the same TDE, the same permissions, the same backup retention, and the same audit as the document itself. One boundary, one set of evidence.

But Watch the Egress

The same release makes it easy to call an external model directly from T-SQL (the external REST endpoint procedure). That convenience is exactly where a bank has to be strict: a stored procedure that sends row data to an outside URL is data egress, and it needs to be governed like any other outbound flow.

Fabric Mirroring and Change Streaming: Convenience Meets DORA

SQL Server 2025 can mirror operational data into Microsoft Fabric / OneLake in near real time, and stream row-level change events to external targets. Operationally this is excellent — analysts stop competing with core banking transactions for the same server. From a supervisory standpoint it is a boundary crossing that has to be treated as one.

Concern What to establish before enabling it
Residency Which region does OneLake sit in? For an EU institution, confirm the data stays in an acceptable jurisdiction.
Classification Mirroring copies data as-is. Confirm what classes of data are allowed to leave the transactional system, and mask/exclude the rest.
Access The lakehouse copy needs the same least-privilege model as the source — a mirror is not a place where access rules get relaxed.
Third-party risk A cloud analytics dependency belongs in the DORA register of ICT third-party arrangements, with exit and continuity plans.
Aggregation lineage BCBS 239 expects you to trace risk figures to source. A mirrored/transformed copy must keep that lineage intact.

The Quiet Feature Banks Should Care About Most

Not everything relevant is new in 2025. SQL Server's tamper-evident Ledger capability and the data-integrity features around it are, for a bank, more strategically important than any AI headline: a cryptographically verifiable record that data has not been altered is close to a native answer to "prove this wasn't changed." If you are on 2025 anyway, revisit whether Ledger belongs on your most sensitive, most disputed tables. The native JSON type helps here too in a small way — validation on write is a data-integrity control, rejecting malformed payloads at the door instead of discovering them in a reconciliation later.

Performance Changes Are a Change-Management Event

SQL Server 2025 extends Intelligent Query Processing and adds optimized locking. Both are genuine improvements — lighter blocking on busy OLTP, more plans fixed automatically. But in a bank, "the optimizer now behaves differently" is not a free lunch; it is a change that has to go through change management with evidence.

⚠ The audit-friendly way to adopt plan changes: capture a documented performance baseline before migrating, migrate at the current compatibility level, then raise the compatibility level as a separate, individually tested and approved change. That sequence gives you a clean before/after and a defensible answer if a core process regresses — instead of one big change nobody can decompose afterward.

Staying Supported Is Itself a Control

For a regulated institution, running an out-of-support database version is not merely a technical risk — it is a finding waiting to happen. Supervisors and internal audit expect security-relevant systems to receive vendor patches. Part of the case for SQL Server 2025 is unglamorous but real: it extends the supported runway, and moving onto it removes an audit exposure that grows every year you stay on an older release.

Upgrading the Way an Examiner Would Want

None of the above changes how a bank should actually perform the upgrade. If anything, the compliance framing reinforces the discipline this site keeps returning to: a version change is a governed project, evidenced end to end.

For the underlying migration mechanics — assessment, approaches, and pitfalls — see Migration to SQL Server 2025: Risks, Issues, and Safe Approach, and for the feature tour without the compliance lens, SQL Server 2025: What's New for Developers and DBAs.

The Bottom Line

SQL Server 2025 is, on balance, good news for banks — but for an unexpected reason. Its most-hyped feature, in-database AI, is valuable in the financial sector mainly because it keeps sensitive data inside the boundary a bank already controls, rather than scattering it into new stores that each need their own audit. The features that move data out — Fabric mirroring, external endpoint calls, change streaming — are the ones to slow down on, govern deliberately, and enter into the DORA third-party register.

Read that way, the release rewards exactly the institutions that already treat every change as something an examiner will eventually inspect. The engine got more capable. The obligation to prove what it does, who can reach it, and how you undo it did not change at all.

← Back to Blog