New biometric access system for SG
Bank attempts to shore up risk controls in response to internal review
Société Générale (SG) is attempting to shore up its risk controls with the implementation of biometric access controls for dealing personnel. The news follows an internal investigation by a bank committee into the €5 billion rogue trading event that identified major weaknesses in its supervision, security and control procedures.
Rogue junior trader Jérome Kerviel is reported to have faked emails to cover his trades, and used log-in codes from other SG employees to place the unauthorised trades. The review identified priority areas that included the strengthening of IT security through the development of biometric authentication systems, reinforcing controls and alert procedures, and improving the structure and governance of the operational risk management system. Plans for improving access security and conducting targeted security audits are also being pushed forward.
Although the review shows that risk control procedures were followed correctly at SG, routine checks were not supported by more detailed probes, which could have discovered the unauthorised trades much earlier.
The French government, which conducted its own review into the event, also found that the bank's security systems and internal controls were lacking and that the bank missed a number of alarms, notably derivatives exchange Eurex’s alert to the French bank about the positions in Kerviel's book.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Regulation
EBA seeks to allay Simm divergence concerns
EU validator pledges to co-ordinate with global regulators, but retains ability to act alone “if needed”
FRTB models find salvation in US Basel III proposal
Changes to P&L attribution test and NMRFs make IMA viable for US banks, risk managers say
US blows the floors off Basel III
Barr criticises “downward deviations” in US rule; Bowman rejects “blind adherence” to global standards
Basel III endgame – a timeline
A review of Risk.net’s coverage of the US implementation saga
Leaked EU plans offer extra temporary relief for FRTB models
Risk factors would need only two observations to be modellable. Do changes foreshadow US Basel III?
Iosco chief talks cyber, AI and clearing
Buenaventura discusses Iosco’s role in aiding market resilience and cross-border co-operation
US regulators bid to save FRTB IMA, but it’s no small task
Even if industry wish-list is granted, a 2028 start date might be too soon for model adoption
Hopes rise for cross-product netting under SA-CCR
Banks want rule change in Basel III endgame to lower capital costs of clearing UST repos
