Letter to the editor
News
Dear Editor,
Recent comments attributed to Robert Rubin, a director and chairman of the executive committee of Citigroup, reveal much as to how boards of directors have looked at risk management.
The media have reported Rubin as holding Citi's risk management executives responsible for the difficulties in which the company now finds itself. He is reported as saying "the board can't run the risk book of a company. The board as a whole is not going to have a granular knowledge (of operations)".
It is generally accepted that it is the responsibility of the board of directors of any company to set the risk appetite for the business and to establish the strategies that will be adopted for managing risk across the business. The board then, quite rightly, provides senior management with the mandate to implement such strategies. The risk management function is there to assist in the implementation and to monitor and report back to management what is going on.
The important issue here is that it is for management to act on the information being supplied to them by the risk function. It is not for risk management to make decisions for management.
For a director of a business such as Citibank to display such ignorance of the way in which risk management works is breathtaking and to attempt to lay the blame at the risk management function is nothing short of scandalous. I note also that Rubin is reported to have said "the board as a whole...", implying that at least some section of the board would have the granular knowledge of operations.
The three most senior executives of Citigroup serve on its board. If these individuals had no knowledge of the company's risk book, it might make one wonder what on earth they are doing in return for their not insubstantial remuneration. The rest of Citi's board might, quite rightly, be disappointed in the event such knowledge, if it did exist, was not shared with them.
This is a shining example to all of the importance of strong governance around the risk management function. The board must understand clearly that the ultimate responsibility for risk management lies with them and they must be held to account when it fails. Pillar II of Basel II states: "Bank management is responsible for understanding the nature and level of risk being taken by the bank and how this risk relates to adequate capital levels." This rather flies in the face of Rubin's reported comments.
Perhaps if greater attention had been paid, we would not be in the mess we now are.
Yours sincerely,
Philip H Martin, Chairman, Institute of Operational Risk.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
More on Risk management
Calibrating interest rate curves for a new era
Dmitry Pugachevsky, director of research at Quantifi, explores why building an accurate and robust interest rate curve has considerable implications for a broad range of financial operations – from setting benchmark rates to managing risk – and hinges on…
Bankers – shape up or ship out, says UBS compliance head
Tough approach comes as ECB prepares new guidance on conduct risk for 2024 release
Op risk data: WhatsApp fines keep on coming
Also: ‘Five families’ stock-lending cartel pays up; double hit for Wells Fargo. Data by ORX News
The impact of emerging risk on credit portfolio management
Bank credit portfolio managers are increasingly finding that non-financial risks, such as cyber risk and climate risk, are falling under the remit of credit portfolio management (CPM). This will also be impacted by the upcoming Basel III Final Reforms,…
Bankers call for overhaul of EBA stress tests
Support for multiple scenarios, but only if fixed assumptions and variables are scaled back
Do all roads lead to multi-scenario Fed stress tests?
This year’s CCAR faced criticism for underweighting the risk of higher-for-longer inflation
Vendors under new scrutiny in CFTC due diligence push
Planned cyber resilience regime will force dealers to subject “critical” tech vendors to stricter audit
Does it matter if Tom Hayes is acquitted?
It matters to him, but changes to UK rules are meant to avoid an exact repeat of the Libor case
