BCBS Issues Principles for Operational Resilience and Risk
BCBS issued principles for operational resilience and revised the principles for sound management of operational risk, following an August 2020 consultation. The principles for operational resilience aim to strengthen banks' ability to withstand operational risk-related events that could cause significant operational failures or wide-scale disruptions in financial markets, such as pandemics, cyber incidents, technology failures or natural disasters. The principles for the sound management of operational risk have been revised to make technical revisions to align the principles with the recently finalized Basel III operational risk framework, update the guidance where needed in the areas of change management and information and communication technologies (ICT), and enhance the overall clarity of the principles.
BCBS had conducted, in 2014, a review of the implementation of the principles for sound management of operational risk. The review was aimed to assess the extent to which banks had implemented the principles, identify significant gaps in implementation, and highlight emerging and noteworthy operational risk management practices at banks not currently addressed by the principles. The 2014 review had identified that several principles had not been adequately implemented and further guidance would be needed to facilitate their implementation in certain areas. The revised principles for sound management of operational risk for banks cover governance, the risk management environment, information and communication technology, business continuity planning,; and the role of disclosures. These elements should not be viewed in isolation; rather, they are integrated components of the operational risk management framework and the overall risk management framework (including operational resilience) of the group. BCBS recommends that banks should take account of the nature, size, complexity and risk profile of their activities when implementing the Principles.
The principles for operational resilience build on the principles for sound management of operational risk and are largely derived and adapted from existing guidance on outsourcing-, business continuity- and risk management-related guidance issued by BCBS or national supervisors over a number of years. By building on the existing guidance and current practices, BCBS is seeking to develop a coherent framework and avoid duplication. The operational resilience principles focus on governance, operational risk management, business continuity planning and testing, mapping interconnections and interdependencies, third-party dependency management, incident management, and resilient cyber security and ICT. The approach draws from the previously issued principles on corporate governance for banks as well as outsourcing-, business continuity- and relevant risk management-related guidance.
Related Links
Keywords: International, Banking, Basel, Operational Risk, Operational Resilience, Guidance, Outsourcing Risk, Third-Party Risk, Cyber Risk, COVID-19, BCBS
Previous Article
BCB Issues Rules on Credit Risk and Reporting Requirements for BanksRelated Articles
BIS and Central Banks Experiment with GenAI to Assess Climate Risks
A recent report from the Bank for International Settlements (BIS) Innovation Hub details Project Gaia, a collaboration between the BIS Innovation Hub Eurosystem Center and certain central banks in Europe
Nearly 25% G-SIBs Commit to Adopting TNFD Nature-Related Disclosures
Nature-related risks are increasing in severity and frequency, affecting businesses, capital providers, financial systems, and economies.
Singapore to Mandate Climate Disclosures from FY2025
Singapore recently took a significant step toward turning climate ambition into action, with the introduction of mandatory climate-related disclosures for listed and large non-listed companies
SEC Finalizes Climate-Related Disclosures Rule
The U.S. Securities and Exchange Commission (SEC) has finalized the long-awaited rule that mandates climate-related disclosures for domestic and foreign publicly listed companies in the U.S.
EBA Proposes Standards Related to Standardized Credit Risk Approach
The European Banking Authority (EBA) has been taking significant steps toward implementing the Basel III framework and strengthening the regulatory framework for credit institutions in the EU
US Regulators Release Stress Test Scenarios for Banks
The U.S. regulators recently released baseline and severely adverse scenarios, along with other details, for stress testing the banks in 2024. The relevant U.S. banking regulators are the Federal Reserve Bank (FED), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC).
Asian Governments Aim for Interoperability in AI Governance Frameworks
The regulatory landscape for artificial intelligence (AI), including the generative kind, is evolving rapidly, with governments and regulators aiming to address the challenges and opportunities presented by this transformative technology.
EBA Proposes Operational Risk Standards Under Final Basel III Package
The European Union (EU) has been working on the final elements of Basel III standards, with endorsement of the Banking Package and the publication of the European Banking Authority (EBA) roadmap on Basel III implementation in December 2023.
EFRAG Proposes XBRL Taxonomy and Standard for Listed SMEs Under ESRS
The European Financial Reporting Advisory Group (EFRAG), which plays a crucial role in shaping corporate reporting standards in European Union (EU), is seeking comments, until May 21, 2024, on the Exposure Draft ESRS for listed SMEs.
ECB to Expand Climate Change Work in 2024-2025
Banking regulators worldwide are increasingly focusing on addressing, monitoring, and supervising the institutions' exposure to climate and environmental risks.