My guess is there are some inside the banks who could do it, but not enough that they can do it at scale, and maybe the executives would rather trust third party providers than their own staff 🤷‍♂️

There's a legal / butt covering side to it too. If you outsource your security to a third party software you don't have to take as much blame if something goes wrong