OSFI issued a letter to the federally regulated financial institutions seeking their views on certain aspects of its approach to the operational risk and resilience framework. One aspect OSFI is seeking views on is how it can position its perspective on operational risk and resilience within its principles-based guidance framework (including Guideline E-21). Views are also being sought on ways to address connections to related risks within the OSFI approach to operational risk management and operational resilience; the related risks include technology and cyber risks; third-party risk; model risk; and culture, compliance, and reputational risks. Stakeholders can submit comments until September 10, 2021.
BCBS published guidance in March 2021 on operational risk and resilience and OSFI, as a BCBS member, had participated in the work that led to the publication of the revised principles for sound management of operational risk and the new principles for operational resilience. OSFI believes that the revisions to the principles for sound management of operational risk strengthen BCBS guidance on operational risk management while the principles of operational resilience introduce the concept of operational resilience. Earlier, on December 15, 2020, OSFI had concluded a consultation process on its September discussion paper titled "Developing financial sector resilience in a digital world," which highlighted certain aspects of operational resilience. OSFI views operational resilience as an important objective of operational risk management and believes that operational resilience encompasses a number of risk management practices and capabilities; these include articulating risk appetite and setting risk tolerances for operational risk; identifying and analyzing critical operations, interconnections, and interdependencies; using scenarios and testing to assess resilience capabilities; and preventing, responding, adapting, recovering and learning from operational disruptions. While the existing Guidelines and Advisories of OSFI cover many of these areas, there are opportunities to strengthen its guidance expectations to enhance operational resilience at financial institutions, including both deposit-taking institutions and insurance companies. As part of implementing any guidance on operational risk and resilience for financial institutions, OSFI will consider whether certain elements of this guidance could also be relevant to federally regulated pension plans.
Keywords: Americas, Canada, Banking, Insurance, Pensions, Operational Risk, Operational Resilience, Guideline E-21, Third Party Risk, Cyber Risk, Model Risk, Technology Risk, OSFI
Previous ArticleFSB Reports on LIBOR Transition, Urges Entities to Take Action
The Board of Governors of the Federal Reserve System (FED) adopted the final rule on Adjustable Interest Rate (LIBOR) Act.
The European Central Bank (ECB) published an updated list of supervised entities, a report on the supervision of less significant institutions (LSIs), a statement on macro-prudential policy.
The Hong Kong Monetary Authority (HKMA) published a circular on the prudential treatment of crypto-asset exposures, an update on the status of transition to new interest rate benchmarks.
The European Commission (EC) adopted the standards addressing supervisory reporting of risk concentrations and intra-group transactions, benchmarking of internal approaches, and authorization of credit institutions.
The China Banking and Insurance Regulatory Commission (CBIRC) issued rules to manage the risk of off-balance sheet business of commercial banks and rules on corporate governance of financial institutions.
The Hong Kong Monetary Authority (HKMA) made announcements to address sustainability issues in the financial sector.
The European Banking Authority (EBA) published regulatory standards on identification of a group of connected clients (GCC) as well as updated the lists of identified financial conglomerates.
The General Board of the European Systemic Risk Board (ESRB), at its December meeting, issued an updated risk assessment via the quarterly risk dashboard and held discussions on key policy priorities to address the systemic risks in the European Union.
The Financial Conduct Authority (FCA) is seeking comments, until December 21, 2022, on the draft guidance for firms to support existing mortgage borrowers.
The Financial Stability Board (FSB) published a report that assesses progress on the transition from the Interbank Offered Rates, or IBORs, to overnight risk-free rates as well as a report that assesses global trends in the non-bank financial intermediation (NBFI) sector.