The Office of the Comptroller of the Currency (OCC) issued the new Model Risk Management booklet of the Comptroller's Handbook for banks. The booklet can be used by OCC examiners in the supervision of national banks, federal savings associations, and federal branches and agencies of foreign banking organizations. The booklet presents the concepts, general principles, and sound practices for model risk management and aligns with the principles laid out in supervisory guidance on Model Risk Management. It also provides information needed to plan and coordinate examinations on model risk management, identify deficient practices, and conduct appropriate follow-up.
In this booklet, OCC has defined eight categories of model risks for bank supervision purposes: credit, interest rate, liquidity, price, operational, compliance, strategic, and reputation. The use of models invariably presents model risk, which is the potential for adverse consequences
from decisions based on incorrect or misused model outputs and reports. Model risk can lead to financial loss, poor business and strategic decision making, or damage to a bank’s reputation. The risks associated with model use can occur at any point during a model’s development,
implementation, use, and validation. As per the supervisory guidance on model risk management, banks should identify the sources of risk and assess the magnitude of these risks. The booklet also addresses how banks should manage third-party risks in model development. OCC notes that third-party risk management weaknesses related to a bank’s use of third parties providing models or related products and services could increase operational risk, particularly when management does not fully understand a third-party model’s capabilities, applicability, and limitations. The booklet also covers weaknesses in internal controls and emphasizes that security weaknesses, including poorly constructed application program interfaces (API) and weaknesses in the controls for the access, transmission, and storage of sensitive customer information, could expose a bank to increased operational risk.
Keywords: Americas, US, Banking, Comptroller Handbook, Community Banks, Third-Party Risk, Operational Risk, Governance, Internal Controls, API, Regtech, Guidance, Model Risk, Artificial Intelligence, OCC
Previous ArticleMAS Updates FAQs on Securities and Futures Regulations
In a letter addressed to the industry, the Australian Prudential Regulation Authority (APRA) set out an updated schedule of policy priorities for the banking, insurance, and superannuation industries.
The European Commission (EC) adopted a comprehensive review package of Solvency II rules in the European Union.
The Office of the Comptroller of the Currency (OCC) issued Versions 1.0 of the "Earnings" and "Regulatory Reporting" booklets of the Comptroller's Handbook.
The European Central Bank (ECB) published results of its economy-wide climate stress test, which aimed to assess the resilience of non-financial corporates and euro area banks to climate risks.
The European Banking Authority (EBA) published a report on the use of digital platforms in the banking and payments sector in European Union.
The Hong Kong Monetary Authority (HKMA) published updates on the policy measures that were announced in context of the ongoing pandemic.
The International Swaps and Derivatives Association (ISDA), along with several other associations, submitted a joint response to the Basel Committee on Banking Supervision (BCBS) consultation on preliminary proposals for the prudential treatment of cryptoasset exposures.
BIS published the September issue of the Quarterly Review, which contains special features that analyze the rapid rise in equity funding for financial technology firms, the effectiveness of policy measures in response to pandemic, and the evolution of international banking.
The Basel Committee for Banking Supervision (BCBS) met in September 2021 and reviewed climate-related financial risks, discussed impact of digitalization, and welcomed efforts by the International Financial Reporting Standards (IFRS) Foundation to develop a common set of sustainability reporting standards
The Office of the Comptroller of the Currency (OCC) issued a Cease and Desist Order against MUFG Union Bank for deficiencies in technology and operational risk governance.