Operational risk. Introduction During the early part of the decade, much of the focus was on techniques for measuring and managing market risk. As the.

Slides:



Advertisements
Similar presentations
Operational Risk Questionnaire
Advertisements

Page 1 Risk Management in Banking. Page 2 An Introduction to Risk Risk Management Risk Management is the process of measuring or assessing the actual.
G L O B A L S E R V I C E / I N D U S T R Y A U D I T / T A X / A D V I S O R Y / L I N E O F B U S I N E S S SAS 112 Presentation California State University.
Investments Institute of Insurance and Risk Management (IIRM) Hyderabad, India 15 November 2005 Arup Chatterjee – Advisor International Association of.
“This workforce solution was funded by a grant awarded under Workforce Innovation in Regional Economic Development (WIRED) as implemented by the U.S. Department.
Auditing Computer Systems
1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.
The Islamic University of Gaza
Copyright © 2008 Delmar Learning. All rights reserved. Chapter 18 Financial Management of the Medical Practice.
Measuring and Managing Operational Risk. 2 Assessing Operational Risk Exposure Required Process of Continuous Risk Assessment, Monitoring and Reporting.
B RITISH B ANKERS' A SSOCIATION Operational Risk & the Regulatory Environment Simon Hills Director - Prudential Capital team.
1 Operational Risk Management Member Education Series Seminar Indian Institute of Banking & Finance Nagpur November 2005.
© 2012 McGladrey LLP. All Rights Reserved.© 2014 McGladrey LLP. All Rights Reserved. © 2012 McGladrey LLP. All Rights Reserved. © 2013 McGladrey LLP. All.
Board of Director’s Training December 5, Board’s Ultimate Responsibility.
Operational Risk Chapter 18
Vendor Risk: Effective Management is Essential
Measure what matters – to build stronger financial performance and to achieve financial stability under OFR Peter Scott Peter Scott Consulting
SMALL BUSINESS RESOURCE GUIDE CHECKLIST FOR GOING INTO BUSINESS.
REGULATORY LEGAL AND CONTRACTUAL ASPECTS OF PPP IN WATER AJAY RAGHAVAN Counsel Training Workshop, Bhopal, February 2009.
Overview of Credit Risk Management practices in banksMarketing Report 1 st Half 2009 Overview of Credit Risk Management practices – The banking perspective.
Auditing Internal Control over Financial Reporting
Introduction Time Quality Cost Project Constraints Success Introduction.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin 3-1 Chapter Three Risk Assessment and Materiality Chapter Three.
Chapter 07 Internal Control McGraw-Hill/IrwinCopyright © 2014 by The McGraw-Hill Companies, Inc. All rights reserved.
Introduction to Internal Control Systems
Chapter 6 Liability Insurance. What is Liability Insurance? There are many different types of insurance policies available, but liability insurance is.
Managing Operational Risk Within Your Treasury Environment.
Risk Management. IT Controls Risk management process Risk management process IT controls IT controls IT Governance Frameworks IT Governance Frameworks.
Communication campaign Most common issues identified: analysis per cost category Antonio Requena Fernández FCH JU Financial Officer.
Operational Risk Sa-Dhan S.Ramesh. Risk categories and their importance for MFI Risk categories Rating CreditLoan portfolio riskXXXXX Interbank riskXX.
Risk Management Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
Chapter 7 Auditing Internal Control over Financial Reporting McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
Risk Management Through Governance S.Ramesh Managing Director Gaia Advisors Sa-Dhan.
CIA Annual Meeting LOOKING BACK…focused on the future.
MANAGING THIRD-PARTY RISK New York Region Regulatory Conference Call March 3, 2011.
Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.
2006 General Meeting Assemblée générale 2006 Chicago, Illinois 2006 General Meeting Assemblée générale 2006 Chicago, Illinois Canadian Institute of Actuaries.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
IT Risks and Controls Revised on Content Internal Control  What is internal control?  Objectives of internal controls  Types of internal controls.
Chapter 9: Introduction to Internal Control Systems
RISK MANAGEMENT YULVI. Introduction Time Quality Cost Project Constraints Success Introduction.
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Auditing Internal Control over Financial Reporting Chapter Seven.
1  The objective of operational risk management is the same as for credit, market and liquidity risks that is to find out the extent of the financial.
Basel Committee Norms. Basel Framework Basel Committee set up in 1974 Objectives –Supervision must be adequate –No foreign bank should escape supervision.
Statement of Auditing Standard No. 94 The Effect of Information Technology on the Auditor’s Consideration of Internal Control in a Financial Statement.
Operational Risk. Introduction operational risk has proved to be an important cause of financial losses. Indeed, most financial disasters can be attributed.
Dolly Dhamodiwala CEO, Business Beacon Management Consultants
Willet C. Jim Financial Consultant Zenas Legal Practice (ACCA, B.Acc UZ)
Corliss Whitaker: Portfolio – Instructional Presentation Understanding BASEL II Concepts Author: Korki Whitaker Revised: 02/17/2007.
Management of Operational Risk. Regulatory Capital Perspective Credit Risk – Basel I (1987) Market Risk – (Amendment 1998) Credit Risk – Basel II (2005)
TORTS: A CIVIL WRONG Chapter 18. TORTS: A CIVIL WRONG Under criminal law, wrongs committed are called crimes. Under civil law, wrongs committed are called.
F8: Audit and Assurance. 2 Designed to give you knowledge and application of: Section A: Audit Framework and Regulation Section B: Internal audit Section.
Ch6 Liquidity and Operational Risk. Liquidity risk In finance, liquidity risk is the risk that a given security or asset cannot be traded quickly enough.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2008 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
Risk Management Dr. Clive Vlieland-Boddy. Managements Responsibilities Strategy – Hopefully sustainable! Control – Hopefully maximising profits! Risk.
Campus Wide Safety Committee Initial Meeting 11/9/16
Factors to be considered for the Internal Auditors
RISK EVENT Iisaaksiichaa Ross Braine Mid-Career MSIM Candidate
Risk Management Policy & Procedures
Operational Risk.
Risk Management Definition
Measurement of Operational Risk
RISK MANAGEMENT IN MUNICIPALITIES
Operational Risk Chapter 20
CAYMAN ISLANDS MONETARY AUTHORITY
Internal controls 01-Nov-2017.
Statement of Auditing Standard No. 94
Neopay Practical Guides #2 PSD2 (Should I be worried?)
Internal Control Internal control is the process designed and affected by owners, management, and other personnel. It is implemented to address business.
Presentation transcript:

Operational risk

Introduction During the early part of the decade, much of the focus was on techniques for measuring and managing market risk. As the decade progressed, this shifted to techniques of measuring and managing credit risk. By the end of the decade, firms and regulators were increasingly focusing on risks "other than market and credit risk “. These came to be collectively called operational risks. This catch-all category of risks including: - employee errors, - employee errors, - systems failures, - systems failures, - fire, floods or other losses to physical assets, - fire, floods or other losses to physical assets, - fraud or other criminal activity. - fraud or other criminal activity.

Introduction Operational risk is intrinsic to financial institutions and thus should be an important component of their firm- wide risk management systems. However, operational risk is harder to quantify and model than market and credit risks. Improvements in management information systems and computing technology have opened the way for improved operational risk measurement and management.

Introduction The Basel Committee (2004) defines operational risk as the risk of loss resulting from inadequate or failed internal processes, people and systems, or from external events. The committee indicates that this definition excludes systemic/strategic risk, reputation risk and legal risk.

Introduction Strategic risk: i.e. the risk of a loss arising from a poor strategic business decision, and reputation risk (damage to an organization through loss of its reputation or standing) A significant but non-catastrophic operational loss could still affect its reputation possibly leading to a further collapse of its business and organizational failure.

Categories of Loss Events 1. Internal Fraud: Loss due to acts of a type intended to defraud, misappropriate property or circumvent regulations, the law or company policy, excluding diversity / discrimination events, which involves at least one internal party. Examples: - Transactions not reported (intentional) - Transaction type unauthorized (with monetary loss) - Fraud / credit fraud / worthless deposits - Theft - Misappropriation of assets - Smuggling - Account take-over / impersonation, etc. - Tax non-compliance - Bribes

Categories of Loss Events 2. External Fraud: Losses due to acts of a type intended to defraud, misappropriate property or circumvent the law, by a third party. Examples: - Hacking damage - Theft of information (with monetary loss)

Categories of Loss Events Employment Practices and Workplace Safety: Losses arising from acts inconsistent with employment, health or safety laws or agreements, from payment of personal injury claims, or from diversity / discrimination events. Examples: -Compensation, benefit, termination issues - Organized labor activities - General liability (slips and falls, etc.) - Employee health & safety rules and events Workers compensation -All discrimination types

Categories of Loss Events 4. Clients, Products & Business Practice: Losses arising from an unintentional or negligent failure to meet a professional obligation to specific clients (including fiduciary and suitability requirements), or from the nature or design of a product. Examples: - Natural disaster losses - Human losses from external sources (vandalism)

Categories of Loss Events 5. Damage to Physical Assets: Losses arising from loss or damage to physical assets from natural disaster or other events Examples: - Hardware - Software - Telecommunications - Utility outage / disruptions

Categories of Loss Events 6. Execution, Delivery & Process Management: Losses from failed transaction Losses from failed transaction processing or process management, from relations with trade counterparties and vendors Examples: Miscommunication Data entry, maintenance or loading error Missed deadline or responsibility Model / system disoperation Accounting error / entity attribution error Delivery failure Collateral management failure Failed mandatory reporting obligation Inaccurate external report (loss incurred) Client permissions / disclaimers missed Legal documents missing / incomplete Unapproved access given to accounts Incorrect client records (loss incurred) Negligent loss or damage of client assets Vendor disputes

Risk indicators Risk indicators differ from loss events. They are not associated with specific losses, but indicate the general level of operational risk. Examples of risk indicators a firm might track are: - amount of overtime being performed by back- office staff, - staffing levels, - daily transaction volumes, - employee turnover rates, - systems downtime.

Operational Risk Management From a modeling standpoint, the goal is to find relationships between specific risk indicators and corresponding rates of loss events. If such relationships can be identified, then risk indicators can be used to identify periods of elevated operational risk. Most operational risks are best managed within the departments in which they arise. Information technology professionals are best suited for addressing systems-related risks. Back office staff are best suited to address settlement risks, etc.

Operational Risk Management The Operational Risk Management framework should include identification, measurement, monitoring, reporting, control and mitigation frameworks for Operational Risk. The operational risk management should be provided by a centralized department that should closely coordinate with market risk and credit risk management departments within an overall business risk management framework.

Contingencies broadly fall into two categories: - those that occur frequently and entail modest losses; - those that occur infrequently but may entail substantial losses. Accordingly, operational risk management should combine both qualitative and quantitative techniques for assessing risks. For example, settlement errors in a trading operation's back office happen with sufficient regularity that they can be modeled statistically. Operational Risk Management

Other contingencies affect financial institutions infrequently and are of a non-uniform nature, which makes modeling difficult. Examples include acts of natural disasters, and trader fraud. Qualitative techniques include: - loss event reports, - loss event reports, - management oversight, - employee questionnaires, - exit interviews, - management self assessment, and - internal audit.

Operational Risk Management Quantitative techniques have been developed primarily for the purpose of assigning capital charges for banks' operational risks. Basel II allows large banks to base operational risk capital requirements on their own internal models. Contingencies of an infrequent but potentially catastrophic nature can, to some extent, be modeled using techniques developed for property & casualty insurance. Contingencies that arise more frequently are more amendable to statistical analysis.

Operational Risk Management Statistical modeling requires data. For operational contingencies, two forms of data are useful: - data on historical loss events, and - data on risk indicators. Losses may be direct (as in the case of theft) or indirect (as in the case of damage to the institution's reputation). There are three ways data on loss events can be categorized: - event - cause - consequence

Operational Risk Management For example, an event might be a mis-entered trade. the cause might be inadequate training, a systems problem or employee fatigue. Consequences might include a market loss, fees paid to a counterparty, a lawsuit or damage to the firm's reputation. Any event may have multiple causes or consequences.

Operational Risk Management Tracking all three dimensions of loss events facilitates the construction of event matrices, identifying the frequency with which certain causes are associated with specific events and consequences. Even with no further analysis, such matrices can identify for management areas for improvement in procedures, employee training, close management oversight, segregation of duties, purchase of insurance, employee background checks, exiting certain businesses, and the capitalization of risks. Choice of techniques will depend upon a cost-benefit analysis.

Methods of Operational Risk Management Basel II has given guidance to 3 broad methods of Capital calculation for Operational Risk in Banks and similar Financial Institutions Basic Indicator Approach - based on annual revenue of the Financial Institution Standardized Approach - based on annual revenue of each of the broad business lines of the Financial Institution Advanced Measurement Approaches - based on the internally developed risk measurement framework of the bank adhering to the standards prescribed

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.