SlideShare a Scribd company logo

BCBS 239 risk data aggregation reporting_Feb15_PRINT

R
Richard Powell, Business Transformation
1 of 12
Download to read offline
BCBS 239 Risk data aggregation and reporting A practical path to compliance and delivering business value Global Regulatory Reform
Contents 01 Banks can’t do it all by 2016. They need to prioritize and make the right choices 01 02 Finding a meaningful and actionable framework to deliver against BCBS 239 principles 03 03 Coordinating in a practical way and using BCBS 239 to your advantage 07 04 How EY can help 08
1A practical path to compliance and delivering business value 01Banks can’t do it all by 2016. They need to prioritize and make the right choices The Basel Committee of Banking Supervision (BCBS) 239 is different from other regulations. It demands that the information banks use to drive decision-making captures all risks with appropriate accuracy and timeliness. By setting out overarching principles of effective risk management reporting and governance, BCBS 239 focuses banks on developing the right capabilities versus hitting a compliance date. BCBS 239 isn’t just about filling in another reporting template. Even after January 2016 (the compliance date for Globally Systemically Important Banks (G-SIBs)) it won’t go away. Regulators are viewing BCBS 239 compliance through multiple lenses Stress testing exercises such as the Comprehensive Capital Analysis and Review (CCAR) in the US, the Firm Data Submission Framework (FDSF) in the UK and the European Banking Authority (EBA) stress tests across Europe have emphasized the capability gaps banks have to bridge. The resources required to run these exercises are not sustainable. Bank alignment to the principles will also be challenged by other regulations including the Fundamental Review of the Trading Book (FRTB). If banks fail to demonstrate compliant solutions for data management, data governance and alignment between risk, finance and the business they will be forced to change the way they model and value their risk. Without change, the rules will require a material increase in the level of capital banks need to hold. But it doesn’t stop there. Other regulations such as the UK’s Senior Manager Regime (SMR) will further intensify Board and Senior Management responsibility and accountability in the banking sector with a major focus on risk control. With the level of current and future change, BCBS 239 can, and should, be positioned at the heart of coordinating regulatory transformation. Banks have a lot of work ahead Evolving the way banks operate and adapting their supporting data and technology infrastructures will require a lot of work. Both the banks and their regulators recognize the challenges in fully aligning to the principles by January 2016. G-SIBs have mobilized and Domestic Systemically Important Banks (D-SIBs) are now mobilizing their approach to achieve regulatory compliance. A recent EY survey* on BCBS 239 readiness shows that banks are viewing the principles as an enabler for other strategic objectives aimed at transforming the business to survive in the new marketplace. Banks are, however, challenged in making the join between BCBS 239 principles, specific capability-based requirements and their existing book of work across different functional areas, lines of business and regions. This is often evidenced by a limited number of BCBS 239 initiatives, especially at divisional and regional levels. With limited investment spend, banks need to set the right priorities for 2015 Demonstrating sufficient progress to the regulator while also moving the organization towards it’s existing strategic goals will be key. Banks need a practical method to address the challenges ahead: •• Translate principles into meaningful and measurable changes •• Understand the gap to target capabilities (calibrated against peers) * EY’s BCBS 239 Autumn 2014 industry survey of 30 G-SIBs and D-SIBs on prioritizing and mobilizing projects for 2015 •• Connect strategic change across risk, finance, data and technology •• Gain sufficient momentum in 2015 and beyond with the depth and breadth of skills required to deliver •• Measure and monitor progress to January 2016 and demonstrate sustained alignment to the principles beyond 2016 Activities that deliver key capabilities EY’s experience of BCBS 239 indicates that banks are prioritizing specific areas: •• Data ownership and data quality frameworks •• Policy change •• Critical risk process documentation (including controls and key data elements) •• Service level agreements •• Data dictionary and lineage Avoid the cost of non-compliance Banks that continue to show deficiencies in their risk management capabilities may experience increased intensity of supervision and the possible application of capital add-ons and other limits on banks’ risk-taking and growth opportunities.
Conclusion y 2 A practical path to compliance and delivering business value Percentageofrespondentspercategory <25% 25%–50% 56% 22% 22% 50%–75% 75%–100% Figure 1: What % of your BCBS 239-related change programs will be completed by January 2016? Key findings from EY’s BCBS 239 Autumn 2014 industry survey of 30 G-SIBs and D-SIBs on prioritizing and mobilizing projects for 2015 •• Our survey (see figure 1) showed that most respondents think a significant part of their BCBS change delivery will not be complete by January 2016 •• 89% of respondents viewed BCBS 239 as an enabler to shape their IT strategy and develop their IT infrastructure. •• 78% of respondents viewed BCBS 239 as an enabler for their enterprise-wide data management capability objectives. •• 67% of respondents viewed BCBS 239 as an initiative to help drive operational efficiency and other cost reduction initiatives.
3A practical path to compliance and delivering business value 02Finding a meaningful and actionable framework to deliver against BCBS 239 principles Through our experience of working with many G-SIBs and D-SIBs on their BCBS 239 self-assessment and compliance planning activities, EY has developed a Risk Data Aggregation and Reporting (RDAR) Framework. Banks can use this proven approach to manage change successfully, by integrating and delivering their BCBS 239 compliance objectives alongside their strategic investment program. EY’s RDAR Framework presents a capability objective view through which banks can: Clearly articulate BCBS 239 compliance requirements and priorities1 Make the join across strategic change programs2 Align other regulatory changes in a coordinated way3 Rapidly form an approach to successfully manage change4 Armed with a common language, banks can use BCBS 239 as a lever to align objectives and coordinate delivery. Without such a Framework we have seen banks struggle to get a common understanding or consistency of response and measurement across the enterprise. Banks can use EY’s RDAR Framework to create a common and meaningful understanding of the changes required across lines of business, functions and regions, and an approach to deliver the change in a coordinated and effective way. Banks can use the same framework to align strategic program objectives alongside BCBS 239-specific execution- level needs. Joining up the organization around BCBS 239 has clear advantages, both externally, in terms of demonstrating a cohesive response to the regulator, and internally, by prioritizing the development of risk management capabilities. EY’s RDAR Framework is not just theory; it has been tried and tested with a number of clients and has been used to identify and define practical road maps towards compliance. RDAR Framework People and organization Strategy and governance Processes and controls Data and technology Analytics and decision support Strategy and governance Processes and controls People and organization Analytics and decision supportData and technology •• Data governance •• Board and senior management accountability •• Risk policy and design principles •• Stress and crisis adaptability •• Key processes and controls •• Reconciliations •• Amendments and adjustments •• Capability and performance management •• Resource alignment •• Stress testing •• Risk matrix and measures •• Management information and reporting •• IT strategy and governance •• Golden sources and data lineage •• IT architecture and systems •• Data organization and definition •• IT performance •• Data quality •• End-user computing
Conclusion y 4 A practical path to compliance and delivering business value How EY’s Risk Data Aggregation and Reporting Framework can address banks’ challenges As important regulatory changes continue to sweep across the banking landscape, both regulators and banks want to do the right thing. They want to invest in a coordinated and strategic fashion to build a more performant and stable banking environment. Banks face a number of challenges from regulations being expressed in different ways, and implemented with different timescales and overlapping jurisdictional applications. Banks need to avoid a siloed response to managing regulatory change if they are to build the right platform to develop their business, generate returns on regulatory change spend and meet the challenge of today’s market. To achieve this, banks need to connect the complex array of global regulatory changes in a way that has relevance to how they operate and that allows them to manage the required change. EY’s RDAR Framework supports this integration of priorities, using common capability objectives spread across the BCBS 239 principles to create the join. The Framework is helping banks to rapidly understand what BCBS 239 means to the way they operate, moving from principles to business-ready requirements. Banks have work to do across all components of the RDAR Framework. It can help banks articulate and prioritize change alongside organization-specific objectives with a number of common focus areas. The emerging priority areas of investment for 2015 include: •• Data ownership and data quality frameworks •• Policy change •• Critical risk process documentation (including controls and key data elements) •• Service level agreements •• Data dictionary and lineage At most banks, existing investment programs have the potential to achieve much of the progress required toward BCBS 239 compliance. Mapping specific BCBS 239 change demands against the bank’s investment programs is critical to leveraging the committed investment in an efficient manner. With EY’s RDAR Framework, banks can make the connection across their large scale finance, risk and data programs. Using a common language of capabilities, joins are quickly identified, allowing for a rapid assessment of how much mutual value can be realized — for both the BCBS 239 compliance work and the transformation programs. RDAR Framework clearly articulates BCBS 239 compliance requirements and priorities RDAR Framework can help banks make the join across strategic change programs 1 2 BCBS 239 Finance •• Improve data quality •• Harmonize data architecture •• Harmonize data governance •• Share data management and reporting services Risk •• Commoditize risk reporting activity •• Reduce time spent on data issues and generating reports •• Embed risk control standards •• Reduce cost and develop risk utilities Data •• Improve data governance models •• Improve data accountability •• Implement data dictionary and standards •• Improve data quality
5A practical path to compliance and delivering business value There are a number of new and enhanced requirements that are impacting the reporting and disclosure landscape. Links between them are complex, overlaps are rife, and achieving consistency is becoming more challenging. The direction of travel is firmly toward a) greater granularity, and b) more public disclosure. There is also increasing overlap between the demands placed on internal and external reporting requirements. Getting risk management and reporting right has never been more critical. Regulators now have access to more data and insights which expose any lack of join across an organization. EY have identified clear overlaps and specific capability requirements across regulations by aligning different regulatory requirements to the principles. For example, the review of the Pillar 3 disclosure requirements and BCBS 239. Cross-regulatory change can be coordinated and managed under the RDAR Framework. RDAR Framework aligns other regulatory changes in a coordinated way3 Percentageofrespondentspercategory 67% 33% No or minimal impact Yes, minimal considerations only Yes, integral to future state design Align BCBS 239 and other regulatory initiatives Our survey (see figure 2), found that all respondents stated that other regulatory initiatives such as FDSF, CCAR and EBA stress testing are affecting their response to BCBS 239. Two-thirds of banks are aligning cross- regulatory requirements as an integral part of their future state design. Figure 2: Are regulatory initiatives such as FDSF, CCAR and EBA stress testing affecting your BCBS 239 implementation? There is a strong link between BCBS 239 and other regulatory reporting and disclosure developments. Important considerations include: •• Increasing focus on risk and finance data integration •• Developing common reporting processes and controls and aligning regulatory reporting and financial statement information •• Increasing visibility and potential impact (operational overheads) to manage, control and monitor adjustments and amendments •• Growing demand to improve the connectivity of information and transparency of data lineage, including aggregation and transformation logic •• Optimizing data granularity and dimensionality capabilities •• Promotion of data standards — internal and external •• Developing strong data governance and data quality •• Improving the consistency and reliability of risk exposures and forecasts — explicit comparisons of hypothetical and actual trading outcomes •• Implementing new risk measures, e.g., resilience measures and dashboard of key metrics
Conclusion y 6 A practical path to compliance and delivering business value Planning compliance Once requirements have been grouped using EY’s RDAR Framework, banks can establish and sequence logical change components: •• Self-assessment findings (where are the biggest gaps to bridge?) •• Relative benefits vs. time and complexity of change •• Alignment across other regulatory developments •• Alignment to other large-scale investment programs •• Other organization-specific priorities Demonstrating continued compliance Banks need to track delivery against the deadlines agreed with their supervisor. But how many are looking to measure their continued compliance with the principles beyond that point? Banks need to put in place mechanisms to measure continued compliance after project teams have been stood down. EY’s RDAR Framework approach has helped a number of banks to develop a traceable mechanism to demonstrate progress against agreed plans. These solutions focus primarily on program alignment and project tracking. In addition to base-level BCBS 239 progress tracking, EY has developed solutions to take banks beyond compliance deadlines, to meet both continued regulatory scrutiny and the bank’s own requirements to deliver sustained business value and effectiveness. These are not “nice to have” options; regulators expect banks to perform internal reviews of their BCBS 239 programs and to be prepared for reviews by their regulators. RDAR Framework rapidly forms an approach to manage change successfully4
7A practical path to compliance and delivering business value 03 EY’s RDAR Framework can help capture and structure the changes demanded by BCBS 239. Banks should look to use the principles of BCBS 239 to coordinate investment in people, process, technology and data. Without a structured approach to join up, prioritize and sequence change demands across the organization, banks will deliver regulatory change inefficiently at best; at worst, it will be non-compliant and ineffective. With the right approach, and steer from the top, banks have an opportunity to tackle long-standing problems that restrict their ability to aggregate risk exposures and deliver the right information at the right time to support their decision-making needs fully. Banks need to deliver: •• A common view of business activity across risk and finance •• Risk control standards in line with their finance counterparts •• Sustainable operating models to manage increased frequency, volumes and governance expectations •• Radically improved data quality and transparency across the management of risk life cycle Banks can view BCBS 239 as just another regulation with which to comply. Alternatively, banks can use the principles to align the way they operate and direct their change priorities across the organization. With the right approach, banks can develop a practical path to compliance and deliver business value. Coordinating in a practical way and using BCBS 239 to your advantage
Conclusion y 8 A practical path to compliance and delivering business value 04How EY can help EY has extensive experience helping organizations navigate through BCBS 239 and associated risk management transformation. We have supported a significant number of G-SIBs and D-SIBs through self- assessments, development of target operating models, implementation of road maps and program mobilization. Our network of former senior regulators is supported by global enterprise intelligence, risk and finance technology enablement teams, meaning EY brings a broad range of experience and skills to diagnose, design and implement change successfully. EY’s BCBS 239 Framework helps banks ensure that regulatory compliance commitments are clearly articulated and aligned to other strategic objectives underway at the bank. It provides a set of tools, techniques, methodologies and approaches that enable and accelerate BCBS 239 compliance and the release of business value. EY teams can rapidly identify focus areas, then apply a set of BCBS 239-specific tools and methods to accelerate delivery. Our teams have the depth and breadth of skills required, combining significant BCBS 239, data, risk management and IT change experience.
Contacts Dan Higgins EMEIA IT Advisory Leader Email: dan.higgins@ey.com Tel: + 44 20 795 14788 Neil Thewlis EMEIA BCBS 239 Leader Email: nthewlis@uk.ey.com Tel: + 44 20 795 16019 Richard Powell UK BCBS 239 Leader Email: rpowell@uk.ey.com Tel: + 44 20 795 10817 Jared Chebib Risk Advisory Email: jchebib@uk.ey.com Tel: + 44 20 795 15941 Rob Toguri EMEIA Enterprise Intelligence Leader Email: rtoguri@uk.ey.com Tel: + 44 20 795 12470
EY | Assurance | Tax | Transactions | Advisory About EY EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities. EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. For more information about our organization, please visit ey.com. © 2015 EYGM Limited. All Rights Reserved. EYG No. EK0353 1492314.indd (UK) 02/15. Artwork by Creative Services Group Design. ED None In line with EY’s commitment to minimize its impact on the environment, this document has been printed on paper with a high recycled content. This material has been prepared for general informational purposes only and is not intended to be relied upon as accounting, tax, or other professional advice. Please refer to your advisors for specific advice. ey.com

Recommended

Implementing bcbs 239 rdarr
Implementing bcbs 239 rdarrImplementing bcbs 239 rdarr
Implementing bcbs 239 rdarrmzahidgill
 
Master Data Management – Aligning Data, Process, and Governance
Master Data Management – Aligning Data, Process, and GovernanceMaster Data Management – Aligning Data, Process, and Governance
Master Data Management – Aligning Data, Process, and GovernanceDATAVERSITY
 
Demystifying Healthcare Data Governance
Demystifying Healthcare Data GovernanceDemystifying Healthcare Data Governance
Demystifying Healthcare Data GovernanceHealth Catalyst
 
Gartner: Seven Building Blocks of Master Data Management
Gartner: Seven Building Blocks of Master Data ManagementGartner: Seven Building Blocks of Master Data Management
Gartner: Seven Building Blocks of Master Data ManagementGartner
 
Cfo as Economic Guardian
Cfo as Economic GuardianCfo as Economic Guardian
Cfo as Economic Guardianaccenture
 
Enterprise Data Management Framework Overview
Enterprise Data Management Framework OverviewEnterprise Data Management Framework Overview
Enterprise Data Management Framework OverviewJohn Bao Vuu
 
TOP_407070357-Data-Governance-Playbook.pptx
TOP_407070357-Data-Governance-Playbook.pptxTOP_407070357-Data-Governance-Playbook.pptx
TOP_407070357-Data-Governance-Playbook.pptxSabrinaLameiras1
 
Showing ROI for Your Analytic Project
Showing ROI for Your Analytic ProjectShowing ROI for Your Analytic Project
Showing ROI for Your Analytic ProjectDATAVERSITY
 

Recommended

Implementing bcbs 239 rdarr
Implementing bcbs 239 rdarrImplementing bcbs 239 rdarr
Implementing bcbs 239 rdarrmzahidgill
 
Master Data Management – Aligning Data, Process, and Governance
Master Data Management – Aligning Data, Process, and GovernanceMaster Data Management – Aligning Data, Process, and Governance
Master Data Management – Aligning Data, Process, and GovernanceDATAVERSITY
 
Demystifying Healthcare Data Governance
Demystifying Healthcare Data GovernanceDemystifying Healthcare Data Governance
Demystifying Healthcare Data GovernanceHealth Catalyst
 
Gartner: Seven Building Blocks of Master Data Management
Gartner: Seven Building Blocks of Master Data ManagementGartner: Seven Building Blocks of Master Data Management
Gartner: Seven Building Blocks of Master Data ManagementGartner
 
Cfo as Economic Guardian
Cfo as Economic GuardianCfo as Economic Guardian
Cfo as Economic Guardianaccenture
 
Enterprise Data Management Framework Overview
Enterprise Data Management Framework OverviewEnterprise Data Management Framework Overview
Enterprise Data Management Framework OverviewJohn Bao Vuu
 
TOP_407070357-Data-Governance-Playbook.pptx
TOP_407070357-Data-Governance-Playbook.pptxTOP_407070357-Data-Governance-Playbook.pptx
TOP_407070357-Data-Governance-Playbook.pptxSabrinaLameiras1
 
Showing ROI for Your Analytic Project
Showing ROI for Your Analytic ProjectShowing ROI for Your Analytic Project
Showing ROI for Your Analytic ProjectDATAVERSITY
 
Rethinking Trust in Data
Rethinking Trust in Data Rethinking Trust in Data
Rethinking Trust in Data DATAVERSITY
 
Chapter 4: Data Architecture Management
Chapter 4: Data Architecture ManagementChapter 4: Data Architecture Management
Chapter 4: Data Architecture ManagementAhmed Alorage
 
DAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data ModelerDAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data ModelerDATAVERSITY
 
Chapter 2: Data Management Overviews
Chapter 2: Data Management OverviewsChapter 2: Data Management Overviews
Chapter 2: Data Management OverviewsAhmed Alorage
 
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...Element22
 
Data strategy in a Big Data world
Data strategy in a Big Data worldData strategy in a Big Data world
Data strategy in a Big Data worldCraig Milroy
 
Data Governance
Data GovernanceData Governance
Data GovernanceBoris Otto
 
Building a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business GoalsBuilding a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business GoalsDATAVERSITY
 
Infogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation ChallengesInfogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation ChallengesMichelle Genser
 
Measuring Data Quality Return on Investment
Measuring Data Quality Return on InvestmentMeasuring Data Quality Return on Investment
Measuring Data Quality Return on InvestmentDATAVERSITY
 
How to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data QualityHow to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data QualityDATAVERSITY
 
DAMA International DMBOK V2 - Comparison with V1
DAMA International DMBOK V2 - Comparison with V1DAMA International DMBOK V2 - Comparison with V1
DAMA International DMBOK V2 - Comparison with V1Howard Diesel (CDMP BI, DW, DBA, Msc Elec Eng)
 
The Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - AccentureThe Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - Accentureaccenture
 
Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?DATAVERSITY
 
Chapter 3: Data Governance
Chapter 3: Data Governance Chapter 3: Data Governance
Chapter 3: Data Governance Ahmed Alorage
 
Ebook - The Guide to Master Data Management
Ebook - The Guide to Master Data Management Ebook - The Guide to Master Data Management
Ebook - The Guide to Master Data Management Hazelknight Media & Entertainment Pvt Ltd
 
Digital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial SystemDigital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial Systemaccenture
 
Data Governance Best Practices
Data Governance Best PracticesData Governance Best Practices
Data Governance Best PracticesDATAVERSITY
 
How to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First ApproachHow to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First ApproachPrecisely
 
Business impact without data governance
Business impact without data governanceBusiness impact without data governance
Business impact without data governanceJohn Bao Vuu
 
BCBS 239
BCBS 239BCBS 239
BCBS 239Lata Sheth
 
Smart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory complianceSmart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory complianceDATAVERSITY
 

More Related Content

What's hot

Rethinking Trust in Data
Rethinking Trust in Data Rethinking Trust in Data
Rethinking Trust in Data DATAVERSITY
 
Chapter 4: Data Architecture Management
Chapter 4: Data Architecture ManagementChapter 4: Data Architecture Management
Chapter 4: Data Architecture ManagementAhmed Alorage
 
DAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data ModelerDAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data ModelerDATAVERSITY
 
Chapter 2: Data Management Overviews
Chapter 2: Data Management OverviewsChapter 2: Data Management Overviews
Chapter 2: Data Management OverviewsAhmed Alorage
 
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...Element22
 
Data strategy in a Big Data world
Data strategy in a Big Data worldData strategy in a Big Data world
Data strategy in a Big Data worldCraig Milroy
 
Data Governance
Data GovernanceData Governance
Data GovernanceBoris Otto
 
Building a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business GoalsBuilding a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business GoalsDATAVERSITY
 
Infogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation ChallengesInfogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation ChallengesMichelle Genser
 
Measuring Data Quality Return on Investment
Measuring Data Quality Return on InvestmentMeasuring Data Quality Return on Investment
Measuring Data Quality Return on InvestmentDATAVERSITY
 
How to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data QualityHow to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data QualityDATAVERSITY
 
The Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - AccentureThe Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - Accentureaccenture
 
Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?DATAVERSITY
 
Chapter 3: Data Governance
Chapter 3: Data Governance Chapter 3: Data Governance
Chapter 3: Data Governance Ahmed Alorage
 
Digital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial SystemDigital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial Systemaccenture
 
Data Governance Best Practices
Data Governance Best PracticesData Governance Best Practices
Data Governance Best PracticesDATAVERSITY
 
How to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First ApproachHow to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First ApproachPrecisely
 
Business impact without data governance
Business impact without data governanceBusiness impact without data governance
Business impact without data governanceJohn Bao Vuu
 

What's hot (20)

Rethinking Trust in Data
Rethinking Trust in Data Rethinking Trust in Data
Rethinking Trust in Data
 
Chapter 4: Data Architecture Management
Chapter 4: Data Architecture ManagementChapter 4: Data Architecture Management
Chapter 4: Data Architecture Management
 
DAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data ModelerDAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
DAS Slides: Data Architect vs. Data Engineer vs. Data Modeler
 
Chapter 2: Data Management Overviews
Chapter 2: Data Management OverviewsChapter 2: Data Management Overviews
Chapter 2: Data Management Overviews
 
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
Introduction to DCAM, the Data Management Capability Assessment Model - Editi...
 
Data strategy in a Big Data world
Data strategy in a Big Data worldData strategy in a Big Data world
Data strategy in a Big Data world
 
Data Governance
Data GovernanceData Governance
Data Governance
 
Building a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business GoalsBuilding a Data Strategy – Practical Steps for Aligning with Business Goals
Building a Data Strategy – Practical Steps for Aligning with Business Goals
 
Infogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation ChallengesInfogix BCBS 239 Implementation Challenges
Infogix BCBS 239 Implementation Challenges
 
Measuring Data Quality Return on Investment
Measuring Data Quality Return on InvestmentMeasuring Data Quality Return on Investment
Measuring Data Quality Return on Investment
 
How to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data QualityHow to Strengthen Enterprise Data Governance with Data Quality
How to Strengthen Enterprise Data Governance with Data Quality
 
DAMA International DMBOK V2 - Comparison with V1
DAMA International DMBOK V2 - Comparison with V1DAMA International DMBOK V2 - Comparison with V1
DAMA International DMBOK V2 - Comparison with V1
 
The Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - AccentureThe Cloud Imperative in Life Sciences - Accenture
The Cloud Imperative in Life Sciences - Accenture
 
Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?Is Enterprise Data Literacy Possible?
Is Enterprise Data Literacy Possible?
 
Chapter 3: Data Governance
Chapter 3: Data Governance Chapter 3: Data Governance
Chapter 3: Data Governance
 
Ebook - The Guide to Master Data Management
Ebook - The Guide to Master Data Management Ebook - The Guide to Master Data Management
Ebook - The Guide to Master Data Management
 
Digital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial SystemDigital Euro: Implications for the Financial System
Digital Euro: Implications for the Financial System
 
Data Governance Best Practices
Data Governance Best PracticesData Governance Best Practices
Data Governance Best Practices
 
How to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First ApproachHow to Build Data Governance Programs That Last: A Business-First Approach
How to Build Data Governance Programs That Last: A Business-First Approach
 
Business impact without data governance
Business impact without data governanceBusiness impact without data governance
Business impact without data governance
 

Viewers also liked

Smart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory complianceSmart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory complianceDATAVERSITY
 
Graph analysis of the European public tenders
Graph analysis of the European public tendersGraph analysis of the European public tenders
Graph analysis of the European public tendersLinkurious
 
Diaku Axon for BCBS239 compliance
Diaku Axon for BCBS239 complianceDiaku Axon for BCBS239 compliance
Diaku Axon for BCBS239 complianceDariusDiaku
 
ALLL Data Management - 2015 Risk Management Summit
ALLL Data Management - 2015 Risk Management SummitALLL Data Management - 2015 Risk Management Summit
ALLL Data Management - 2015 Risk Management SummitLibby Bierman
 
Data Governance, understand what you already know (IBM Global Business Services)
Data Governance, understand what you already know (IBM Global Business Services)Data Governance, understand what you already know (IBM Global Business Services)
Data Governance, understand what you already know (IBM Global Business Services)IBM Danmark
 
Alignment: Office of the Chief Data Officer & BCBS 239
Alignment: Office of the Chief Data Officer & BCBS 239Alignment: Office of the Chief Data Officer & BCBS 239
Alignment: Office of the Chief Data Officer & BCBS 239Craig Milroy
 
A Modern Data Architecture for Risk Management... For Financial Services
A Modern Data Architecture for Risk Management... For Financial ServicesA Modern Data Architecture for Risk Management... For Financial Services
A Modern Data Architecture for Risk Management... For Financial ServicesMammoth Data
 
BCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data AdequacyBCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data Adequacynikatmalik
 
Data Governance: Keystone of Information Management Initiatives
Data Governance: Keystone of Information Management InitiativesData Governance: Keystone of Information Management Initiatives
Data Governance: Keystone of Information Management InitiativesAlan McSweeney
 
Ibm data governance framework
Ibm data governance frameworkIbm data governance framework
Ibm data governance frameworkkaiyun7631
 
Success by integrating risk management in data governance
Success by integrating risk management in data governanceSuccess by integrating risk management in data governance
Success by integrating risk management in data governanceTejasvi Addagada, CBAP
 
Review of Data Management Maturity Models
Review of Data Management Maturity ModelsReview of Data Management Maturity Models
Review of Data Management Maturity ModelsAlan McSweeney
 

Viewers also liked (15)

BCBS 239
BCBS 239BCBS 239
BCBS 239
 
Smart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory complianceSmart Data Webinar: A semantic solution for financial regulatory compliance
Smart Data Webinar: A semantic solution for financial regulatory compliance
 
Graph analysis of the European public tenders
Graph analysis of the European public tendersGraph analysis of the European public tenders
Graph analysis of the European public tenders
 
Diaku Axon for BCBS239 compliance
Diaku Axon for BCBS239 complianceDiaku Axon for BCBS239 compliance
Diaku Axon for BCBS239 compliance
 
Successful Stewardship NZ
Successful Stewardship NZSuccessful Stewardship NZ
Successful Stewardship NZ
 
ALLL Data Management - 2015 Risk Management Summit
ALLL Data Management - 2015 Risk Management SummitALLL Data Management - 2015 Risk Management Summit
ALLL Data Management - 2015 Risk Management Summit
 
Data Governance, understand what you already know (IBM Global Business Services)
Data Governance, understand what you already know (IBM Global Business Services)Data Governance, understand what you already know (IBM Global Business Services)
Data Governance, understand what you already know (IBM Global Business Services)
 
Data strategies for risk management
Data strategies for risk managementData strategies for risk management
Data strategies for risk management
 
Alignment: Office of the Chief Data Officer & BCBS 239
Alignment: Office of the Chief Data Officer & BCBS 239Alignment: Office of the Chief Data Officer & BCBS 239
Alignment: Office of the Chief Data Officer & BCBS 239
 
A Modern Data Architecture for Risk Management... For Financial Services
A Modern Data Architecture for Risk Management... For Financial ServicesA Modern Data Architecture for Risk Management... For Financial Services
A Modern Data Architecture for Risk Management... For Financial Services
 
BCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data AdequacyBCBS 239 - Risk Data Adequacy
BCBS 239 - Risk Data Adequacy
 
Data Governance: Keystone of Information Management Initiatives
Data Governance: Keystone of Information Management InitiativesData Governance: Keystone of Information Management Initiatives
Data Governance: Keystone of Information Management Initiatives
 
Ibm data governance framework
Ibm data governance frameworkIbm data governance framework
Ibm data governance framework
 
Success by integrating risk management in data governance
Success by integrating risk management in data governanceSuccess by integrating risk management in data governance
Success by integrating risk management in data governance
 
Review of Data Management Maturity Models
Review of Data Management Maturity ModelsReview of Data Management Maturity Models
Review of Data Management Maturity Models
 

Similar to BCBS 239 risk data aggregation reporting_Feb15_PRINT

dt_mt_SREP_Pub_BCBS239_200216lo
dt_mt_SREP_Pub_BCBS239_200216lodt_mt_SREP_Pub_BCBS239_200216lo
dt_mt_SREP_Pub_BCBS239_200216loMark Micallef
 
A Review of BCBS 239: Helping banks stay compliant
A Review of BCBS 239: Helping banks stay compliantA Review of BCBS 239: Helping banks stay compliant
A Review of BCBS 239: Helping banks stay compliantHEXANIKA
 
Considerations for an Effective Internal Model Method Implementation
Considerations for an Effective Internal Model Method ImplementationConsiderations for an Effective Internal Model Method Implementation
Considerations for an Effective Internal Model Method Implementationaccenture
 
BCBS 239 Compliance: A Comprehensive Approach
BCBS 239 Compliance: A Comprehensive ApproachBCBS 239 Compliance: A Comprehensive Approach
BCBS 239 Compliance: A Comprehensive ApproachCognizant
 
KPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeKPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeNanda Thiruvengadam
 
IFRS9 white paper - Credit Today and HML
IFRS9 white paper - Credit Today and HMLIFRS9 white paper - Credit Today and HML
IFRS9 white paper - Credit Today and HMLHML Ltd
 
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.JAMES OKARIMIA
 
IFRS Implementation and How the Banks should Approach It
IFRS Implementation and How the Banks should Approach ItIFRS Implementation and How the Banks should Approach It
IFRS Implementation and How the Banks should Approach ItJAMES OKARIMIA
 
IFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itIFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itJAMES OKARIMIA
 
IFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itIFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itJAMES OKARIMIA
 
IFRS Implementation and How the Banks should approach it
IFRS Implementation and How the Banks should approach itIFRS Implementation and How the Banks should approach it
IFRS Implementation and How the Banks should approach itJAMES OKARIMIA
 
BCBS239 the behemoth lumbers on
BCBS239 the behemoth lumbers onBCBS239 the behemoth lumbers on
BCBS239 the behemoth lumbers onRodney Dennis
 
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.JAMES OKARIMIA
 
Cognizant_Introduction to management consulting in Switzerland
Cognizant_Introduction to management consulting in SwitzerlandCognizant_Introduction to management consulting in Switzerland
Cognizant_Introduction to management consulting in Switzerlandaudrey miguel
 
IFRS Implementation and How the Banks should Approach It.
IFRS Implementation and How the Banks should Approach It.IFRS Implementation and How the Banks should Approach It.
IFRS Implementation and How the Banks should Approach It.JAMES OKARIMIA
 
IFRS Implementation and How the Banks should Approach it.
IFRS Implementation and How the Banks should Approach it.IFRS Implementation and How the Banks should Approach it.
IFRS Implementation and How the Banks should Approach it.JAMES OKARIMIA
 
201310 Risk Aggregation and Reporting. More than Just a Data Issue
201310 Risk Aggregation and Reporting. More than Just a Data Issue201310 Risk Aggregation and Reporting. More than Just a Data Issue
201310 Risk Aggregation and Reporting. More than Just a Data IssueFrancisco Calzado
 

Similar to BCBS 239 risk data aggregation reporting_Feb15_PRINT (20)

dt_mt_SREP_Pub_BCBS239_200216lo
dt_mt_SREP_Pub_BCBS239_200216lodt_mt_SREP_Pub_BCBS239_200216lo
dt_mt_SREP_Pub_BCBS239_200216lo
 
A Review of BCBS 239: Helping banks stay compliant
A Review of BCBS 239: Helping banks stay compliantA Review of BCBS 239: Helping banks stay compliant
A Review of BCBS 239: Helping banks stay compliant
 
Considerations for an Effective Internal Model Method Implementation
Considerations for an Effective Internal Model Method ImplementationConsiderations for an Effective Internal Model Method Implementation
Considerations for an Effective Internal Model Method Implementation
 
BCBS 239 Compliance: A Comprehensive Approach
BCBS 239 Compliance: A Comprehensive ApproachBCBS 239 Compliance: A Comprehensive Approach
BCBS 239 Compliance: A Comprehensive Approach
 
KPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeKPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for Change
 
IFRS17 Time to act, now
IFRS17 Time to act, nowIFRS17 Time to act, now
IFRS17 Time to act, now
 
IFRS9 white paper - Credit Today and HML
IFRS9 white paper - Credit Today and HMLIFRS9 white paper - Credit Today and HML
IFRS9 white paper - Credit Today and HML
 
Javed Siddiqi
Javed SiddiqiJaved Siddiqi
Javed Siddiqi
 
Risk management is changing_Final LR
Risk management is changing_Final LRRisk management is changing_Final LR
Risk management is changing_Final LR
 
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
 
IFRS Implementation and How the Banks should Approach It
IFRS Implementation and How the Banks should Approach ItIFRS Implementation and How the Banks should Approach It
IFRS Implementation and How the Banks should Approach It
 
IFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itIFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach it
 
IFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach itIFRS Implementation and How the Banks should Approach it
IFRS Implementation and How the Banks should Approach it
 
IFRS Implementation and How the Banks should approach it
IFRS Implementation and How the Banks should approach itIFRS Implementation and How the Banks should approach it
IFRS Implementation and How the Banks should approach it
 
BCBS239 the behemoth lumbers on
BCBS239 the behemoth lumbers onBCBS239 the behemoth lumbers on
BCBS239 the behemoth lumbers on
 
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.James Okarimia - IFRS Implementation and How the Banks should Approach IT.
James Okarimia - IFRS Implementation and How the Banks should Approach IT.
 
Cognizant_Introduction to management consulting in Switzerland
Cognizant_Introduction to management consulting in SwitzerlandCognizant_Introduction to management consulting in Switzerland
Cognizant_Introduction to management consulting in Switzerland
 
IFRS Implementation and How the Banks should Approach It.
IFRS Implementation and How the Banks should Approach It.IFRS Implementation and How the Banks should Approach It.
IFRS Implementation and How the Banks should Approach It.
 
IFRS Implementation and How the Banks should Approach it.
IFRS Implementation and How the Banks should Approach it.IFRS Implementation and How the Banks should Approach it.
IFRS Implementation and How the Banks should Approach it.
 
201310 Risk Aggregation and Reporting. More than Just a Data Issue
201310 Risk Aggregation and Reporting. More than Just a Data Issue201310 Risk Aggregation and Reporting. More than Just a Data Issue
201310 Risk Aggregation and Reporting. More than Just a Data Issue
 

BCBS 239 risk data aggregation reporting_Feb15_PRINT

  • 1. BCBS 239 Risk data aggregation and reporting A practical path to compliance and delivering business value Global Regulatory Reform
  • 2. Contents 01 Banks can’t do it all by 2016. They need to prioritize and make the right choices 01 02 Finding a meaningful and actionable framework to deliver against BCBS 239 principles 03 03 Coordinating in a practical way and using BCBS 239 to your advantage 07 04 How EY can help 08
  • 3. 1A practical path to compliance and delivering business value 01Banks can’t do it all by 2016. They need to prioritize and make the right choices The Basel Committee of Banking Supervision (BCBS) 239 is different from other regulations. It demands that the information banks use to drive decision-making captures all risks with appropriate accuracy and timeliness. By setting out overarching principles of effective risk management reporting and governance, BCBS 239 focuses banks on developing the right capabilities versus hitting a compliance date. BCBS 239 isn’t just about filling in another reporting template. Even after January 2016 (the compliance date for Globally Systemically Important Banks (G-SIBs)) it won’t go away. Regulators are viewing BCBS 239 compliance through multiple lenses Stress testing exercises such as the Comprehensive Capital Analysis and Review (CCAR) in the US, the Firm Data Submission Framework (FDSF) in the UK and the European Banking Authority (EBA) stress tests across Europe have emphasized the capability gaps banks have to bridge. The resources required to run these exercises are not sustainable. Bank alignment to the principles will also be challenged by other regulations including the Fundamental Review of the Trading Book (FRTB). If banks fail to demonstrate compliant solutions for data management, data governance and alignment between risk, finance and the business they will be forced to change the way they model and value their risk. Without change, the rules will require a material increase in the level of capital banks need to hold. But it doesn’t stop there. Other regulations such as the UK’s Senior Manager Regime (SMR) will further intensify Board and Senior Management responsibility and accountability in the banking sector with a major focus on risk control. With the level of current and future change, BCBS 239 can, and should, be positioned at the heart of coordinating regulatory transformation. Banks have a lot of work ahead Evolving the way banks operate and adapting their supporting data and technology infrastructures will require a lot of work. Both the banks and their regulators recognize the challenges in fully aligning to the principles by January 2016. G-SIBs have mobilized and Domestic Systemically Important Banks (D-SIBs) are now mobilizing their approach to achieve regulatory compliance. A recent EY survey* on BCBS 239 readiness shows that banks are viewing the principles as an enabler for other strategic objectives aimed at transforming the business to survive in the new marketplace. Banks are, however, challenged in making the join between BCBS 239 principles, specific capability-based requirements and their existing book of work across different functional areas, lines of business and regions. This is often evidenced by a limited number of BCBS 239 initiatives, especially at divisional and regional levels. With limited investment spend, banks need to set the right priorities for 2015 Demonstrating sufficient progress to the regulator while also moving the organization towards it’s existing strategic goals will be key. Banks need a practical method to address the challenges ahead: •• Translate principles into meaningful and measurable changes •• Understand the gap to target capabilities (calibrated against peers) * EY’s BCBS 239 Autumn 2014 industry survey of 30 G-SIBs and D-SIBs on prioritizing and mobilizing projects for 2015 •• Connect strategic change across risk, finance, data and technology •• Gain sufficient momentum in 2015 and beyond with the depth and breadth of skills required to deliver •• Measure and monitor progress to January 2016 and demonstrate sustained alignment to the principles beyond 2016 Activities that deliver key capabilities EY’s experience of BCBS 239 indicates that banks are prioritizing specific areas: •• Data ownership and data quality frameworks •• Policy change •• Critical risk process documentation (including controls and key data elements) •• Service level agreements •• Data dictionary and lineage Avoid the cost of non-compliance Banks that continue to show deficiencies in their risk management capabilities may experience increased intensity of supervision and the possible application of capital add-ons and other limits on banks’ risk-taking and growth opportunities.
  • 4. Conclusion y 2 A practical path to compliance and delivering business value Percentageofrespondentspercategory <25% 25%–50% 56% 22% 22% 50%–75% 75%–100% Figure 1: What % of your BCBS 239-related change programs will be completed by January 2016? Key findings from EY’s BCBS 239 Autumn 2014 industry survey of 30 G-SIBs and D-SIBs on prioritizing and mobilizing projects for 2015 •• Our survey (see figure 1) showed that most respondents think a significant part of their BCBS change delivery will not be complete by January 2016 •• 89% of respondents viewed BCBS 239 as an enabler to shape their IT strategy and develop their IT infrastructure. •• 78% of respondents viewed BCBS 239 as an enabler for their enterprise-wide data management capability objectives. •• 67% of respondents viewed BCBS 239 as an initiative to help drive operational efficiency and other cost reduction initiatives.
  • 5. 3A practical path to compliance and delivering business value 02Finding a meaningful and actionable framework to deliver against BCBS 239 principles Through our experience of working with many G-SIBs and D-SIBs on their BCBS 239 self-assessment and compliance planning activities, EY has developed a Risk Data Aggregation and Reporting (RDAR) Framework. Banks can use this proven approach to manage change successfully, by integrating and delivering their BCBS 239 compliance objectives alongside their strategic investment program. EY’s RDAR Framework presents a capability objective view through which banks can: Clearly articulate BCBS 239 compliance requirements and priorities1 Make the join across strategic change programs2 Align other regulatory changes in a coordinated way3 Rapidly form an approach to successfully manage change4 Armed with a common language, banks can use BCBS 239 as a lever to align objectives and coordinate delivery. Without such a Framework we have seen banks struggle to get a common understanding or consistency of response and measurement across the enterprise. Banks can use EY’s RDAR Framework to create a common and meaningful understanding of the changes required across lines of business, functions and regions, and an approach to deliver the change in a coordinated and effective way. Banks can use the same framework to align strategic program objectives alongside BCBS 239-specific execution- level needs. Joining up the organization around BCBS 239 has clear advantages, both externally, in terms of demonstrating a cohesive response to the regulator, and internally, by prioritizing the development of risk management capabilities. EY’s RDAR Framework is not just theory; it has been tried and tested with a number of clients and has been used to identify and define practical road maps towards compliance. RDAR Framework People and organization Strategy and governance Processes and controls Data and technology Analytics and decision support Strategy and governance Processes and controls People and organization Analytics and decision supportData and technology •• Data governance •• Board and senior management accountability •• Risk policy and design principles •• Stress and crisis adaptability •• Key processes and controls •• Reconciliations •• Amendments and adjustments •• Capability and performance management •• Resource alignment •• Stress testing •• Risk matrix and measures •• Management information and reporting •• IT strategy and governance •• Golden sources and data lineage •• IT architecture and systems •• Data organization and definition •• IT performance •• Data quality •• End-user computing
  • 6. Conclusion y 4 A practical path to compliance and delivering business value How EY’s Risk Data Aggregation and Reporting Framework can address banks’ challenges As important regulatory changes continue to sweep across the banking landscape, both regulators and banks want to do the right thing. They want to invest in a coordinated and strategic fashion to build a more performant and stable banking environment. Banks face a number of challenges from regulations being expressed in different ways, and implemented with different timescales and overlapping jurisdictional applications. Banks need to avoid a siloed response to managing regulatory change if they are to build the right platform to develop their business, generate returns on regulatory change spend and meet the challenge of today’s market. To achieve this, banks need to connect the complex array of global regulatory changes in a way that has relevance to how they operate and that allows them to manage the required change. EY’s RDAR Framework supports this integration of priorities, using common capability objectives spread across the BCBS 239 principles to create the join. The Framework is helping banks to rapidly understand what BCBS 239 means to the way they operate, moving from principles to business-ready requirements. Banks have work to do across all components of the RDAR Framework. It can help banks articulate and prioritize change alongside organization-specific objectives with a number of common focus areas. The emerging priority areas of investment for 2015 include: •• Data ownership and data quality frameworks •• Policy change •• Critical risk process documentation (including controls and key data elements) •• Service level agreements •• Data dictionary and lineage At most banks, existing investment programs have the potential to achieve much of the progress required toward BCBS 239 compliance. Mapping specific BCBS 239 change demands against the bank’s investment programs is critical to leveraging the committed investment in an efficient manner. With EY’s RDAR Framework, banks can make the connection across their large scale finance, risk and data programs. Using a common language of capabilities, joins are quickly identified, allowing for a rapid assessment of how much mutual value can be realized — for both the BCBS 239 compliance work and the transformation programs. RDAR Framework clearly articulates BCBS 239 compliance requirements and priorities RDAR Framework can help banks make the join across strategic change programs 1 2 BCBS 239 Finance •• Improve data quality •• Harmonize data architecture •• Harmonize data governance •• Share data management and reporting services Risk •• Commoditize risk reporting activity •• Reduce time spent on data issues and generating reports •• Embed risk control standards •• Reduce cost and develop risk utilities Data •• Improve data governance models •• Improve data accountability •• Implement data dictionary and standards •• Improve data quality
  • 7. 5A practical path to compliance and delivering business value There are a number of new and enhanced requirements that are impacting the reporting and disclosure landscape. Links between them are complex, overlaps are rife, and achieving consistency is becoming more challenging. The direction of travel is firmly toward a) greater granularity, and b) more public disclosure. There is also increasing overlap between the demands placed on internal and external reporting requirements. Getting risk management and reporting right has never been more critical. Regulators now have access to more data and insights which expose any lack of join across an organization. EY have identified clear overlaps and specific capability requirements across regulations by aligning different regulatory requirements to the principles. For example, the review of the Pillar 3 disclosure requirements and BCBS 239. Cross-regulatory change can be coordinated and managed under the RDAR Framework. RDAR Framework aligns other regulatory changes in a coordinated way3 Percentageofrespondentspercategory 67% 33% No or minimal impact Yes, minimal considerations only Yes, integral to future state design Align BCBS 239 and other regulatory initiatives Our survey (see figure 2), found that all respondents stated that other regulatory initiatives such as FDSF, CCAR and EBA stress testing are affecting their response to BCBS 239. Two-thirds of banks are aligning cross- regulatory requirements as an integral part of their future state design. Figure 2: Are regulatory initiatives such as FDSF, CCAR and EBA stress testing affecting your BCBS 239 implementation? There is a strong link between BCBS 239 and other regulatory reporting and disclosure developments. Important considerations include: •• Increasing focus on risk and finance data integration •• Developing common reporting processes and controls and aligning regulatory reporting and financial statement information •• Increasing visibility and potential impact (operational overheads) to manage, control and monitor adjustments and amendments •• Growing demand to improve the connectivity of information and transparency of data lineage, including aggregation and transformation logic •• Optimizing data granularity and dimensionality capabilities •• Promotion of data standards — internal and external •• Developing strong data governance and data quality •• Improving the consistency and reliability of risk exposures and forecasts — explicit comparisons of hypothetical and actual trading outcomes •• Implementing new risk measures, e.g., resilience measures and dashboard of key metrics
  • 8. Conclusion y 6 A practical path to compliance and delivering business value Planning compliance Once requirements have been grouped using EY’s RDAR Framework, banks can establish and sequence logical change components: •• Self-assessment findings (where are the biggest gaps to bridge?) •• Relative benefits vs. time and complexity of change •• Alignment across other regulatory developments •• Alignment to other large-scale investment programs •• Other organization-specific priorities Demonstrating continued compliance Banks need to track delivery against the deadlines agreed with their supervisor. But how many are looking to measure their continued compliance with the principles beyond that point? Banks need to put in place mechanisms to measure continued compliance after project teams have been stood down. EY’s RDAR Framework approach has helped a number of banks to develop a traceable mechanism to demonstrate progress against agreed plans. These solutions focus primarily on program alignment and project tracking. In addition to base-level BCBS 239 progress tracking, EY has developed solutions to take banks beyond compliance deadlines, to meet both continued regulatory scrutiny and the bank’s own requirements to deliver sustained business value and effectiveness. These are not “nice to have” options; regulators expect banks to perform internal reviews of their BCBS 239 programs and to be prepared for reviews by their regulators. RDAR Framework rapidly forms an approach to manage change successfully4
  • 9. 7A practical path to compliance and delivering business value 03 EY’s RDAR Framework can help capture and structure the changes demanded by BCBS 239. Banks should look to use the principles of BCBS 239 to coordinate investment in people, process, technology and data. Without a structured approach to join up, prioritize and sequence change demands across the organization, banks will deliver regulatory change inefficiently at best; at worst, it will be non-compliant and ineffective. With the right approach, and steer from the top, banks have an opportunity to tackle long-standing problems that restrict their ability to aggregate risk exposures and deliver the right information at the right time to support their decision-making needs fully. Banks need to deliver: •• A common view of business activity across risk and finance •• Risk control standards in line with their finance counterparts •• Sustainable operating models to manage increased frequency, volumes and governance expectations •• Radically improved data quality and transparency across the management of risk life cycle Banks can view BCBS 239 as just another regulation with which to comply. Alternatively, banks can use the principles to align the way they operate and direct their change priorities across the organization. With the right approach, banks can develop a practical path to compliance and deliver business value. Coordinating in a practical way and using BCBS 239 to your advantage
  • 10. Conclusion y 8 A practical path to compliance and delivering business value 04How EY can help EY has extensive experience helping organizations navigate through BCBS 239 and associated risk management transformation. We have supported a significant number of G-SIBs and D-SIBs through self- assessments, development of target operating models, implementation of road maps and program mobilization. Our network of former senior regulators is supported by global enterprise intelligence, risk and finance technology enablement teams, meaning EY brings a broad range of experience and skills to diagnose, design and implement change successfully. EY’s BCBS 239 Framework helps banks ensure that regulatory compliance commitments are clearly articulated and aligned to other strategic objectives underway at the bank. It provides a set of tools, techniques, methodologies and approaches that enable and accelerate BCBS 239 compliance and the release of business value. EY teams can rapidly identify focus areas, then apply a set of BCBS 239-specific tools and methods to accelerate delivery. Our teams have the depth and breadth of skills required, combining significant BCBS 239, data, risk management and IT change experience.
  • 11. Contacts Dan Higgins EMEIA IT Advisory Leader Email: dan.higgins@ey.com Tel: + 44 20 795 14788 Neil Thewlis EMEIA BCBS 239 Leader Email: nthewlis@uk.ey.com Tel: + 44 20 795 16019 Richard Powell UK BCBS 239 Leader Email: rpowell@uk.ey.com Tel: + 44 20 795 10817 Jared Chebib Risk Advisory Email: jchebib@uk.ey.com Tel: + 44 20 795 15941 Rob Toguri EMEIA Enterprise Intelligence Leader Email: rtoguri@uk.ey.com Tel: + 44 20 795 12470
  • 12. EY | Assurance | Tax | Transactions | Advisory About EY EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities. EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. For more information about our organization, please visit ey.com. © 2015 EYGM Limited. All Rights Reserved. EYG No. EK0353 1492314.indd (UK) 02/15. Artwork by Creative Services Group Design. ED None In line with EY’s commitment to minimize its impact on the environment, this document has been printed on paper with a high recycled content. This material has been prepared for general informational purposes only and is not intended to be relied upon as accounting, tax, or other professional advice. Please refer to your advisors for specific advice. ey.com