Who dares wins
EDITOR'S LETTER
The US has been clued on to this potential risk for some time - in January 2007 the TJ Maxx chain of stores announced the loss of millions of customer records as a result of hacking over a period of almost three years. Even before that, ID theft and fraud have been hot topics in that country. As much as four years ago, friends of mine - a physician and her computer-savvy husband - had post snatched out of their letterbox and discovered only by chance they'd had vast loans and other commitments taken out in their names.
In Europe, this kind of theft has received less press, and it was not until the government's confession of CDs gone missing that the issue really gained momentum. Now everyone seems to be announcing that they've had data go missing, under the protective cover of the government's screw-up.
It's frustrating for me that so many UK financial institutions have announced data losses as part of this new confessional mood, including several building societies. Half the point of op risk is that firms should be looking at the kinds of losses other firms are experiencing and applying the lessons learned to their own organisations. Operational risk, done correctly, should be focused on prevention.
The problem of course is human nature - executives look at what happens at other firms and then convince themselves it couldn't happen in their own back garden - because they have better executives, better systems, better risk management and so on.
Complacency is hard to fight. No-one wants to be 'the boy who cries wolf', and often no-one wants to be the messenger bearing bad news - too often they are still shot. Therefore, speculating on what could go wrong seems political madness for many executives.
But for operational risk to move forward as a discipline, this basic human fear of failure needs to be countered with cultural change. Executives must dare to think creatively about disaster.
Ellen Davis
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
More on Risk management
Liquidity risk learnings in the banking industry
Sidhartha Dash, chief researcher at Chartis Research (part of Risk.net's digital network), talks to Steve Pemberton, chief executive of Coherent Europe, about the dynamics and challenges surrounding liquidity risk in the banking industry
Investing in operational readiness to optimise FRTB capital
A forum of industry experts discusses the implementation of FRTB, the burden of investment into data and infrastructure for FRTB compliance, the considerations for banks in using the standardised approach (SA) and the internal model approach (IMA)
Top 10 operational risks: The umpire strikes back
Tougher regulatory enforcement, new consumer rules and rise of ESG are ringing alarm bells
Ion wasn’t deemed a ‘critical’ vendor by most clients
Software firm escaped heavy scrutiny ahead of cyber attack, says US Treasury official
Op risk data: Stanford fraud haunts banks for billions
Also: Helaba’s crank capital relief; TSE stock price sanction; 1MDB mauls Mudabala. Data by ORX News
Hacked off: banks demand answers after Ion cyber attack
Clients left in the dark about ransomware attack that disrupted futures trading last month
Digital exposure makes fraud management a vital responsibility for financial institutions
Fraud management and detection continue to be an increasing area of concern for financial institutions worldwide
UBS takeover of Credit Suisse to trigger higher G-Sib surcharge
At 14.2%, UBS’s CET1 capital ratio is more than sufficient to absorb the deal
