The Office of the Comptroller of the Currency (OCC) issued the new Model Risk Management booklet of the Comptroller's Handbook for banks. The booklet can be used by OCC examiners in the supervision of national banks, federal savings associations, and federal branches and agencies of foreign banking organizations. The booklet presents the concepts, general principles, and sound practices for model risk management and aligns with the principles laid out in supervisory guidance on Model Risk Management. It also provides information needed to plan and coordinate examinations on model risk management, identify deficient practices, and conduct appropriate follow-up.
In this booklet, OCC has defined eight categories of model risks for bank supervision purposes: credit, interest rate, liquidity, price, operational, compliance, strategic, and reputation. The use of models invariably presents model risk, which is the potential for adverse consequences
from decisions based on incorrect or misused model outputs and reports. Model risk can lead to financial loss, poor business and strategic decision making, or damage to a bank’s reputation. The risks associated with model use can occur at any point during a model’s development,
implementation, use, and validation. As per the supervisory guidance on model risk management, banks should identify the sources of risk and assess the magnitude of these risks. The booklet also addresses how banks should manage third-party risks in model development. OCC notes that third-party risk management weaknesses related to a bank’s use of third parties providing models or related products and services could increase operational risk, particularly when management does not fully understand a third-party model’s capabilities, applicability, and limitations. The booklet also covers weaknesses in internal controls and emphasizes that security weaknesses, including poorly constructed application program interfaces (API) and weaknesses in the controls for the access, transmission, and storage of sensitive customer information, could expose a bank to increased operational risk.
Keywords: Americas, US, Banking, Comptroller Handbook, Community Banks, Third-Party Risk, Operational Risk, Governance, Internal Controls, API, Regtech, Guidance, Model Risk, Artificial Intelligence, OCC
Previous ArticleMAS Updates FAQs on Securities and Futures Regulations
The European Banking Authority (EBA) published four draft principles to support supervisory efforts in assessing the representativeness of COVID-19-impacted data for banks using the internal ratings based (IRB) credit risk models.
The European Council and the European Parliament (EP) reached a provisional political agreement on the Corporate Sustainability Reporting Directive (CSRD).
The Prudential Regulation Authority (PRA) launched a consultation (CP6/22) that sets out proposal for a new Supervisory Statement on expectations for management of model risk by banks.
The European Commission (EC) published the Delegated Regulation 2022/954, which amends regulatory technical standards on specification of the calculation of specific and general credit risk adjustments.
The Bank for International Settlements (BIS) Innovation Hub updated its work program, announcing a set of projects across various centers.
The European Insurance and Occupational Pensions Authority (EIOPA) published two consultation papers—one on the supervisory statement on exclusions related to systemic events and the other on the supervisory statement on the management of non-affirmative cyber exposures.
Certain members of the U.S. Senate Committee on Banking, Housing, and Urban Affairs issued a letter to the Securities and Exchange Commission (SEC)
The European Insurance and Occupational Pensions Authority (EIOPA) published a consultation paper on the advice on the review of the securitization prudential framework in Solvency II.
The Prudential Regulation Authority (PRA) issued a statement on PRA buffer adjustment while the Bank of England (BoE) published a notice on the statistical reporting requirements for banks.
The Basel Committee on Banking Supervision (BCBS) issued principles for the effective management and supervision of climate-related financial risks.