OCC to Renew Information Collections on Market Risk & Cyber Risk Tool
The Office of the Comptroller of the Currency (OCC) is seeking, until June 30, 2022, comments on the renewal of the information collection on the market risk capital rule. Comments are also being sought, on behalf of the US Agencies, for the renewal of the information collection titled “FFIEC Cybersecurity Assessment Tool,” for which the comment period ends on August 01, 2022; here, the US Agencies being referred to are the Board of Governors of the Federal Reserve System (FED), the Federal Deposit Insurance Corporation (FDIC), and the National Credit Union Administration (NCUA).
The information collection on market risk capital rule (12 CFR part 3, subpart F) applies to national banks and federal savings associations with significant exposure to market risk; this includes the national banks and federal savings associations with aggregate trading assets and trading liabilities equal to 10% or more of the quarter-end total assets, or USD 1 billion or more. The rule captures positions for which the market risk capital rule is appropriate, reduces procyclicality in market risk capital requirements, enhances risk-sensitivity of OCC's capital requirements by measuring risks that are not adequately captured under the requirements for credit risk;, and increases transparency through enhanced disclosures. The rule enhances risk-sensitivity and includes requirements for the public disclosure of certain qualitative and quantitative information about the market risk of national banks and federal savings associations. This information collection is necessary to ensure capital adequacy appropriate for the level of market risk. The estimated number of respondents for the information collection is 19.
The information collection on cybersecurity assessment necessitates a financial institution to identify its inherent cyber risk profile based on technologies and connection types, delivery channels, online or mobile products and technology services, organizational characteristics, and cyber threats it is likely to face. Once a financial institution identifies its inherent cyber risk profile, it can use the Assessment's maturity matrix to evaluate its level of cybersecurity preparedness based on its cyber risk management and oversight, threat intelligence and collaboration, cybersecurity controls, external dependency management, and cyber incident management and resiliency planning. A financial institution may use the matrix's maturity levels to identify opportunities for improving its cyber risk management based on its inherent risk profile. The Assessment also enables a financial institution to rapidly identify areas that could improve the financial institution's cyber response programs, as appropriate. Use of the Assessment by financial institutions is voluntary. OCC is requesting comments on renewal of this information collection, which was developed by the US Agencies, along with the other the Federal Financial Institutions Examination Council (FFIEC) members, to assist financial institutions of all sizes in assessing their inherent cyber risks and their risk management capabilities.
Related Links
Keywords: Americas, US, Banking, Market Risk, Information Collection, Basel, Regulatory Capital, Reporting, Regtech, Cyber Risk, OCC, FFIEC, US Agencies
Featured Experts

María Cañamero
Skilled market researcher; growth strategist; successful go-to-market campaign developer

Nicolas Degruson
Works with financial institutions, regulatory experts, business analysts, product managers, and software engineers to drive regulatory solutions across the globe.

Patrycja Oleksza
Applies proficiency and knowledge to regulatory capital and reporting analysis and coordinates business and product strategies in the banking technology area
Previous Article
MAS Publishes Papers on Environmental Risk ManagementRelated Articles
ISSB Sustainability Standards Expected to Become Global Baseline
The finalization of the two sustainability disclosure standards—IFRS S1 and IFRS S2—is expected to be a significant step forward in the harmonization of sustainability disclosures worldwide.
IOSCO, BIS, and FSB to Intensify Focus on Decentralized Finance
Decentralized finance (DeFi) is expected to increase in prominence, finding traction in use cases such as lending, trading, and investing, without the intermediation of traditional financial institutions.
BCBS Assesses NSFR and Large Exposures Rules in US
The Basel Committee on Banking Supervision (BCBS) published reports that assessed the overall implementation of the net stable funding ratio (NSFR) and the large exposures rules in the U.S.
Global Agencies Focus on ESG Data, Climate Litigation and Nature Risks
At the global level, supervisory efforts are increasingly focused on addressing climate risks via better quality data and innovative use of technologies such as generative artificial intelligence (AI) and blockchain.
ISSB Standards Shine Spotlight on Comparability of ESG Disclosures
The finalization of the IFRS sustainability disclosure standards in late June 2023 has brought to the forefront the themes of the harmonization of sustainability disclosures
EBA Issues Several Regulatory and Reporting Updates for Banks
The European Banking Authority (EBA) recently issued several regulatory publications impacting the banking sector.
BCBS Proposes to Revise Core Principles for Banking Supervision
The Basel Committee on Banking Supervision (BCBS) launched a consultation on revisions to the core principles for effective banking supervision, with the comment period ending on October 06, 2023.
US Proposes Final Basel Rules, Transition Period to Start in July 2025
The U.S. banking agencies (FDIC, FED, and OCC) recently proposed rules implementing the final Basel III reforms, also known as the Basel III Endgame.
FSB Report Outlines Next Steps for Climate Risk Roadmap
The Financial Stability Board (FSB) recently published the second annual progress report on the July 2021 roadmap to address climate-related financial risks.
EBA Plans on Ad-hoc ESG Data Collection and Climate Scenario Exercise
The recognition of climate change as a systemic risk to the global economy has further intensified regulatory and supervisory focus on monitoring of the environmental, social, and governance (ESG) risks.