FSB Consults on Issues on Outsourcing and Third-Party Relationships
FSB published a discussion paper on the regulatory and supervisory issues related to outsourcing and third-party relationships. The discussion paper presents an overview of the evolving regulatory and supervisory landscape for outsourcing and third-party risk management in FSB member jurisdictions. It briefly describes the existing regulatory and supervisory approaches and outlines the common regulatory and supervisory challenges associated with outsourcing and third-party risk management, also identifying key issues for further exploration. FSB is seeking comments, by January 08, 2021, on the questions set out in the discussion paper.
In January-March 2020, the FSB Standing Committee on Supervisory and Regulatory Cooperation (SRC) conducted a survey among member jurisdictions on the existing regulatory and supervisory landscape for outsourcing and third-party risk management, including cross-border supervisory challenges and potential financial stability issues. The discussion paper provides a high-level overview of the existing landscape based on the survey findings as well as the preliminary observations from authorities’ and financial institutions’ recent responses to the COVID-19 pandemic. The paper intends to facilitate and inform discussions among authorities, financial institutions, and third parties on how to address the issues identified in the SRC survey and the 2019 FSB report on third-party dependencies in cloud services. The discussion has highlighted the following key challenges faced by supervisory authorities:
- Practical limitations on the ability to ensure that financial institutions appropriately manage the risks in their outsourcing and third-party agreements (including risks in the third party’s wider supply chain)
- Limitations on their ability to effectively oversee supervised financial institutions’ outsourcing and third-party arrangements in a cross-border context
- Challenges in identifying, monitoring, and managing potential systemic risks related to financial institutions’ use of outsourcing and third-party arrangements, particularly, due to concentration in the provision of third-party services and lack of relevant information
The high pace of evolution of third-party relationships, including where and how financial institutions use third-party providers, can make understanding and managing these risks more complex. In the paper, FSB highlights that additional analysis may be considered to better understand the risks posed by the changing landscape of outsourcing and third-party relationships. The additional analysis may also be considered to better understand whether the existing approaches allow financial institutions to capture the benefits of outsourcing and third-party relationships while sufficiently addressing the risks that these relationships may pose to financial institutions. The discussion paper emphasizes that effective cross-border cooperation and dialog among supervisory authorities as well as the effective application of existing standards and other emerging practices are important to address these challenges and risks.
Related Links
Comment Due Date: January 08, 2021
Keywords: International, Banking, Insurance, Securities, COVID-19, Third-Party Risk, Systemic Risk, Outsourcing Risk, Cloud Computing, FSB
Featured Experts

Victor Calanog, Ph.D.
Leading economist; commercial real estate; performance forecasting, econometric infrastructure; data modeling; credit risk modeling; portfolio assessment; custom commercial real estate analysis; thought leader.

Dr. Samuel W. Malone
Sam leads the quantitative research team within the CreditEdge™ research group. In this role, he develops novel risk and forecasting solutions for financial institutions while providing thought leadership on related trends in global financial markets.
Previous Article
EBA Reminds Firms to Execute Contingency Plans for Brexit TransitionRelated Articles
HKMA Enhances Loan Guarantee Scheme to Alleviate Pressure on SMEs
HKMA announced that enhancements will be made to the Special 100% Loan Guarantee of the SME Financing Guarantee Scheme (SFGS) and the application period will be extended to December 31, 2021.
BoE Sets Out Plan to Transform Data Collection from Financial Sector
BoE has set out a three-phased plan to transform data collection from the UK financial sector over the next decade.
BIS Issues Updates on Technology Initiatives on Cross-Border Payments
BIS recently made a couple of announcements with respect to the planned and ongoing work in the area of financial technology.
ESRB Updates List of Macro-Prudential Measures in February 2021
ESRB updated the list of national macro-prudential measures applied by each member state in the European Economic Area.
BoE Survey Shows Positive COVID Impact on Outsourced Banking Services
BoE has set out results of a survey on the impact of COVID-19 events on the use of machine learning and data science.
ECB Issues Opinion on Proposal to Regulate Crypto-Asset Markets in EU
In response to a request from the European Council and Parliament, ECB published an opinion on the proposed regulation on markets in crypto-assets.
APRA Announces Aggregate Committed Liquidity Facility for Banks
APRA announced the updated aggregate amounts for the 2021 Committed Liquidity Facility (CLF) established between the Reserve Bank of Australia (RBA) and certain locally incorporated authorized deposit-taking institutions that are subject to the Liquidity Coverage Ratio (LCR).
ECB and UK Authorities Agree on Post-Brexit Supervisory Cooperation
ECB published supervisory Memorandums of Understanding (MoUs) with UK as well as other European and non-European authorities.
EIOPA Outlines Strategic Supervisory Priorities for Insurance Sector
EIOPA identified business model sustainability and adequate product design as the two EU-wide strategic supervisory priorities.
US Agencies to Revise FFIEC 031, FFIEC 041, and FFIEC 051 Reports
After considering comments received on the November 2020 proposal, US Agencies (FDIC, FED and OCC) are proceeding with the proposed revisions to the reporting forms and instructions for Call Reports FFIEC 031, FFIEC 041, and FFIEC 051.