Regulators need to rethink their approach to op risk
Feel pity for your regulator. Although financial firms have been caught out badly by the current credit crunch and spin-off events, it is the regulators who will be burning the midnight oil in the coming months. To help them in their contemplations, I offer some thoughts.
First, they are faced with a true paradox. The internationalisation of financial services means regulators must work more closely together to properly supervise individual firms. In doing so, supervisors are rightly developing an understanding of, and sharing around, best practices for risk management. As a result, firms are gradually adopting similar approaches to risk, to meet regulatory approval. Which means, in turn, that firms are all acting similarly in times of crisis - their whistles and dials all tell them to do the same thing at the same time. This goes beyond procyclicality. A world of lemming banks is a systemic nightmare.
Which raises the next issue of importance - the procyclicality of operational risk. In times of stress firms are raising their overall capital levels to keep the supervisors sweet. But across the industry, this is contributing to announcements of job losses - and historically those losses have hit non-revenue generating parts of organisations hardest. The very parts that look after systems and controls. This can't be good.
This next issue really sticks in my craw. I've read several hundred pages of regulatory output about the current market crisis and have yet to stumble on the phrase 'operational risk'. It hasn't been mentioned in discussion about the over-the-counter derivatives processing issue. It wasn't mentioned in mortgage origination analysis. No sight of it in text about compensation and human resources issues. Or the new product approval processes that broke down. Or around the systems and controls that got trodden underfoot for existing products.
Why no mention of operational risk?
Frankly, if there ever was a time when regulators should be pushing the op risk folks into the limelight, it is now. The discipline was created to understand and either prevent or mitigate these very sorts of problems.
In fact, I'll go further. Why should regulators expect firms to give operational risk executives their proper place at the table, when they themselves don't? Regulators - like deer in the headlights - are trapped in their credit and market risk comfort zones and are sending out the wrong message about operational risk to firms.
This needs to change, and fast.
Have a good month!
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Risk management
EU clearing houses pressured to diversify cloud vendors
CROs and regulators see tech concentration risk as a barrier to operational resilience
Why better climate data doesn’t always mean better decision-making
Risk Benchmarking research finds model and systems integration challenges almost as limiting to effective climate risk management
CanDeal looks to simplify third-party risk management
Six-bank vendor due diligence utility seeks international reach
Market players warn against European repo clearing mandate
Regulators urged to await outcome of US mandate and be wary of risks to government bond liquidity
Italy’s spread problem is not (always) a credit story
Occasional doubts over Italy’s role in the monetary union adds political risk premium, argues economist
Esma won’t soften regulatory expectations for cloud and AI
CCP supervisory chair signals heightened scrutiny of third-party risk and operational resilience
AI spend in US could be good for bonds in Europe – finance chiefs
Development of AI is capital-intensive, but adoption less so, which could favour EU
Climate risk managers’ top challenge: a dearth of data
Risk Benchmarking: Banks see client engagement and lender data pooling as solutions to climate blind spots – but few expect it to happen soon
