SlideShare a Scribd company logo

Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital Transformation

Jacob Kosoff
Jacob Kosoff

Model risk management programs often began their journey by first creating a definition of a model. Then model risk groups would perform model risk activities on each item that met the definition of a model. These model risk activities include classifying risk, assessing current uses, evaluating ongoing monitoring results, validating conceptual soundness, testing model changes, and so forth. This approach was an important beginning for the field of model risk management as it helped identify existing models, discover fundamental errors in existing models, and prevent inappropriate use of models. However, model risk teams often focused only on processes that already include models and did not identify processes that would be significantly improved by using models. This results in model risk teams overlooking modeling capabilities that a process truly needs. However, model risk teams can go on the offensive and use their model inventory as a source of crucial business intelligence. Model risk teams can start to identify processes that do not include models and could recommend the use of existing models to improve those processes. Furthermore, model risk teams can reduce expenses at a bank by guarding against the development or purchase of models with redundant capabilities. Model risk management teams can ultimately be a champion for the extensibility and efficient use of models at an institution. The article was written by Jacob Kosoff, Aaron Bridgers, and Henry Lee. The article was published by the RMA Journal in September 2020.

Data & Analytics
1 of 4
Download to read offline
The RMA Journal September 2020 | Copyright 2020 by RMA 28 Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital MODEL RISK MANAGEMENT/TECHNOLOGY Transformation
September 2020 The RMA Journal 29 Several of the recent trends emerging from the COVID-19 pandemic, such as low-contact consumer commerce, the stay-at-home economy, rapidly evolving credit risk due to the closure of parts of the economy, and virtual integrations with vendors have prompted banks to accelerate key projects. This article explores how banks are accelerating improvements to the customer experience and automating manual processes by fundamentally transforming their model risk management processes. The article will specifically address how banks are adopting a top-down approach to model gov- ernance that inventories the business capabilities of models, identifies essential business outputs derived from models, and determines which model capabilities are most critical to these processes. This approach identifies unused model capabilities that could enable automation and improve busi- ness insights. Additionally, a top-down approach would create transparency around potential gaps in model capabilities needed to support the strategic direction of the bank. BY AARON BRIDGERS, HENRY LEE, AND JACOB KOSOFF
The RMA Journal September 2020 | Copyright 2020 by RMA 30 A focus on model capabilities that support critical processes aligns model governance with recent trends in banking technology architecture be- ing pursued by member banks of the Bank Industry Architecture Network (BIAN). For this approach to be suc- cessful, model risk groups would need to keep pace with the evolving land- scape of quantitative modeling driven by the software community, as well as learn new technical skills. Assessing the technology attributes of models such as interoperability and scalability will be as important as the veracity of the underlying mathematics. Traditional model risk management programs typically start by creating a policy definition of a model that is based on the mathematical approach, or lack thereof, taken to solve a business problem. The definition of a model is usually broad enough to meet regula- tory expectations found in the Federal Reserve’s SR 11-7 Supervisory Guid- ance on Model Risk Management, but narrow enough to not include every spreadsheet at the bank. Model risk groups take a bottom-up approach by first identifying all potential models as the fundamental unit of observation and determining the use of each model across processes. Model risk groups then begin performing model risk activities on each item that meets the definition of a model. These activities include classifying risk, validating the current uses, evaluating ongoing monitoring, and evaluating model changes. This approach was an important beginning for the field of model risk manage- ment, as it helped identify existing models, discover fundamental errors in existing models, and prevent inap- propriate use of models. However, the traditional bottom-up approach may have shortcomings that could hinder digital transformation at banks. First, it is difficult to apply the definition of a model to complex processes such as artificial intelligence- driven customer support, which require generation of regulatory reporting, and digital customer journeys. Model development and risk practitioners can connect with peers in the business and IT architecture to understand current processes as well as what processes could be improved through employing model capabilities. Model risk groups would focus tra- ditional model risk testing activities on the most important processes. These traditional activities should be coupled with modern model risk evaluations to ensure that models are interoperable across processes and that models scale based on the expected volume of each process. These tests would align with the SR 11-7 requirement that “model calculations should be properly coordi- nated with the capabilities and require- ments of information systems.” “Sound model risk management,” the guidelines note, “depends on substantial investment in supporting systems to ensure data and reporting integrity, together with controls and testing to ensure proper implementa- tion of models, effective systems inte- gration, and appropriate use.”1 Model risk groups could modern- ize their inventories to include discrete business capabilities and indicate which models are accessible through APIs, and facilitate automation by en- couraging the use of APIs and creating awareness around the model capabili- ties within the business and IT archi- tecture. Automation can be further enabled by also identifying model capability gaps or gaps in interoper- ability. Models that are interoperable using APIs would allow model risk groups to automate and scale many of their testing processes as well. Finally, a model risk framework that focuses on model-driven busi- ness capabilities accessible through APIs would create more efficient and effective processes. The use of mi- croservices has been made popular by technology companies that use an API business model. Microservices enable companies to react quickly to O n P revious P age : S hutterstock . com many predictive calculations. This can result in redundant model risk activi- ties and difficulty discerning the real impact these models have on business decisions. Second, model risk teams of- ten focus only on processes that already include models and do not identify pro- cesses that would be significantly im- proved by using models. This results in model risk teams overlooking modeling capabilities that a process truly needs. Third, the bottom-up approach does not align with the digital transforma- tion occurring at banks through the creation of business capability appli- cation programming interfaces (APIs) and microservices, which are primary enablers of process automation. A top-down approach, also called a business capability approach, would al- low banks to better think through the component pieces of their processes, build microservices on top of those component pieces, and allow compa- nies to build flexible, cost-effective IT infrastructures that can quickly adapt to customer needs. In other words, the top- down approach focuses on reimagining bank operations as a set of microservices built on top of defined business capabili- ties that are accessed through APIs. In recent times, this approach has evolved into services offered through containers within the cloud. Model risk activities that focus on the definition of a model instead of the business capabilities of- fered by models may slow down digital transformation. A model risk program that uses a top-down approach would focus on improving processes with models and improving the model risk management processes around models. This type of approach could improve risk manage- ment by evaluating the most important business outputs and their associated processes to identify any models cur- rently being used and necessary model capabilities that are not being used ef- fectively. Key business processes may include origination and servicing of bank products, enablement of bank ser- vices, creation of financial statements,
September 2020 The RMA Journal 31 customer needs, integrate with third- party partners, rapidly re-engineer processes, reduce overall IT spend, and scale quickly. The banking in- dustry has formed the not-for-profit BIAN to rethink bank processes, in- cluding quantitative models using the service-driven design through APIs. Models can serve as components of mi- croservices, but this would inherently change the focus from primarily math- ematical techniques to include heavy consideration of model architecture. At the corporate level, outputs meant for external consumption, such as financial statements and regulatory reports, are being fed by a network of models. Furthermore, there are stra- tegic decisions being made internally about risk and risk appetite, which are also supported by models. Identifying these final important outputs provides focus and elucidates the models and data that feed them. This is a perfect opportunity for banks to simplify and automate their operations. This top-down approach will help banks learn where they need models and will provide opportunities to build in elements of API services, which may be expanded over time. Consider how many models are used in commercial credit. Often, several lines of businesses have commercial credit exposure, each with their own models. There are often separate models for each portfolio and product; even if they have different inputs, they are producing the same fundamental out- puts. Charge-off models depend upon PD, EAD, LGD models, etc. PPNR models use expected interest and non- interest revenues and expenses. The top-level models in the process should be targeted first. While the inputs to these models will be calculated differently de- pending upon the financial product and other characteristics, much of the redundancy may be eliminated through modularization and a ser- vice-driven business model. These modules are independent and can be used across multiple portfolios if developed as generalized modules and built with scalability in mind. The upstream models that produce the idiosyncratic inputs to these modules can then be streamlined in successive phases to make the transformation manageable. In conclusion, managing model risk through this top-down approach cre- ates four main benefits: • It improves risk management ef- fectiveness by focusing risk man- agement resources on models that impact real business outcomes. • It cuts costs by greatly reducing model risk activities spent on mod- els and processes that pose little or no risk. • It draws attention to unused model capabilities. • It facilitates process automation and enables digital transformation by aligning models to the standards maintained by the Bank Industry Architecture Network. The opinions expressed in the article are statements of the authors’ opinion, are intended only for infor- mational purposes, and are not formal opinions of, nor binding on Regions Bank, its parent company, Regions Financial Corporation and their subsid- iaries, and any representation to the contrary is expressly disclaimed. Notes 1. https://www.federalreserve.gov/supervisionreg/ srletters/sr1107a1.pdf, page 7. JACOB KOSOFF is a senior vice president and head of model risk management and validation at Regions Bank. He can be reached at Jacob.Kosoff@Regions.com. HENRY LEE, PH.D. is a senior risk and financial intelligence consultant at the SAS Institute. He can be reached at reareached at henry.lee@sas.com. AARON BRIDGERS is a senior vice president and the head of risk testing optimization at Regions Bank. He can be reached at Aaron.Bridgers@Regions.com. "Models that are interoperable using APIs would allow model risk groups to automate and scale many of their testing processes."

Recommended

Credit Audit's Use of Data Analytics in Examining Consumer Loan Portfolios
Credit Audit's Use of Data Analytics in Examining Consumer Loan PortfoliosCredit Audit's Use of Data Analytics in Examining Consumer Loan Portfolios
Credit Audit's Use of Data Analytics in Examining Consumer Loan PortfoliosJacob Kosoff
 
Validating Qualitative Models
Validating Qualitative ModelsValidating Qualitative Models
Validating Qualitative ModelsJacob Kosoff
 
Understanding and validating the uses of machine learning models
Understanding and validating the uses of machine learning modelsUnderstanding and validating the uses of machine learning models
Understanding and validating the uses of machine learning modelsJacob Kosoff
 
Moderating the Churn: Retaining employees in the quantitative banking space
Moderating the Churn: Retaining employees in the quantitative banking spaceModerating the Churn: Retaining employees in the quantitative banking space
Moderating the Churn: Retaining employees in the quantitative banking spaceJacob Kosoff
 
CCAR and stress-testing segmentation insights
CCAR and stress-testing segmentation insightsCCAR and stress-testing segmentation insights
CCAR and stress-testing segmentation insightsGrant Thornton LLP
 
Speaker 1
Speaker 1 Speaker 1
Speaker 1 Graham Jones
 
Blog 2017 01_irrbb - basel irrbb guidelines
Blog 2017 01_irrbb - basel irrbb guidelinesBlog 2017 01_irrbb - basel irrbb guidelines
Blog 2017 01_irrbb - basel irrbb guidelinesSandip Mukherjee CFA, FRM
 
CCAR & DFAST: How to incorporate stress testing into banking operations + str...
CCAR & DFAST: How to incorporate stress testing into banking operations + str...CCAR & DFAST: How to incorporate stress testing into banking operations + str...
CCAR & DFAST: How to incorporate stress testing into banking operations + str...Grant Thornton LLP
 

Recommended

Credit Audit's Use of Data Analytics in Examining Consumer Loan Portfolios
Credit Audit's Use of Data Analytics in Examining Consumer Loan PortfoliosCredit Audit's Use of Data Analytics in Examining Consumer Loan Portfolios
Credit Audit's Use of Data Analytics in Examining Consumer Loan PortfoliosJacob Kosoff
 
Validating Qualitative Models
Validating Qualitative ModelsValidating Qualitative Models
Validating Qualitative ModelsJacob Kosoff
 
Understanding and validating the uses of machine learning models
Understanding and validating the uses of machine learning modelsUnderstanding and validating the uses of machine learning models
Understanding and validating the uses of machine learning modelsJacob Kosoff
 
Moderating the Churn: Retaining employees in the quantitative banking space
Moderating the Churn: Retaining employees in the quantitative banking spaceModerating the Churn: Retaining employees in the quantitative banking space
Moderating the Churn: Retaining employees in the quantitative banking spaceJacob Kosoff
 
CCAR and stress-testing segmentation insights
CCAR and stress-testing segmentation insightsCCAR and stress-testing segmentation insights
CCAR and stress-testing segmentation insightsGrant Thornton LLP
 
Speaker 1
Speaker 1 Speaker 1
Speaker 1 Graham Jones
 
Blog 2017 01_irrbb - basel irrbb guidelines
Blog 2017 01_irrbb - basel irrbb guidelinesBlog 2017 01_irrbb - basel irrbb guidelines
Blog 2017 01_irrbb - basel irrbb guidelinesSandip Mukherjee CFA, FRM
 
CCAR & DFAST: How to incorporate stress testing into banking operations + str...
CCAR & DFAST: How to incorporate stress testing into banking operations + str...CCAR & DFAST: How to incorporate stress testing into banking operations + str...
CCAR & DFAST: How to incorporate stress testing into banking operations + str...Grant Thornton LLP
 
Emerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management PlatformEmerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management PlatformCognizant
 
Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03Pravin Shirname
 
Blog 2016 16 - The Future is Now
Blog 2016 16 - The Future is NowBlog 2016 16 - The Future is Now
Blog 2016 16 - The Future is NowSandip Mukherjee CFA, FRM
 
2017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 20172017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 2017PwC
 
Blog 2016 12 - EAD - IFRS 9 Ramifications
Blog 2016 12 - EAD - IFRS 9 RamificationsBlog 2016 12 - EAD - IFRS 9 Ramifications
Blog 2016 12 - EAD - IFRS 9 RamificationsSandip Mukherjee CFA, FRM
 
2017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 20172017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 2017PwC
 
"Credit
"Credit"Credit
"CreditAnanth V. Tunikipati
 
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017Max Zahner
 
Blog 2016 01
Blog 2016 01Blog 2016 01
Blog 2016 01Sandip Mukherjee CFA, FRM
 
Risk dk
Risk dkRisk dk
Risk dkdkocis
 
John_Lazcano_C_V
John_Lazcano_C_VJohn_Lazcano_C_V
John_Lazcano_C_VJohn Lazcano
 
Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics Judy Misbin
 
Compliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset thresholdCompliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset thresholdGrant Thornton LLP
 
FENG CCAR DFAST BASELIII_real(2)
FENG CCAR DFAST BASELIII_real(2)FENG CCAR DFAST BASELIII_real(2)
FENG CCAR DFAST BASELIII_real(2)Kenneth A. Goodwin Jr., MBA
 
Blog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory AuditorBlog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory AuditorSandip Mukherjee CFA, FRM
 
IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?Sandip Mukherjee CFA, FRM
 
In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02Quantifi
 
Impact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital PlanningImpact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital PlanningJacob Kosoff
 
Keys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycleKeys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycleGrant Thornton LLP
 
5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer Needs5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer NeedsAlisa Karybina
 
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...Jacob Kosoff
 
Tiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and ReliabilityTiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and ReliabilityCognizant
 

More Related Content

What's hot

Emerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management PlatformEmerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management PlatformCognizant
 
Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03Pravin Shirname
 
2017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 20172017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 2017PwC
 
2017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 20172017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 2017PwC
 
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017Max Zahner
 
Risk dk
Risk dkRisk dk
Risk dkdkocis
 
Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics Judy Misbin
 
Compliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset thresholdCompliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset thresholdGrant Thornton LLP
 
Blog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory AuditorBlog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory AuditorSandip Mukherjee CFA, FRM
 
IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?Sandip Mukherjee CFA, FRM
 
In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02Quantifi
 
Impact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital PlanningImpact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital PlanningJacob Kosoff
 
Keys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycleKeys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycleGrant Thornton LLP
 

What's hot (19)

Emerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management PlatformEmerging Differentiators of a Successful Wealtlh Management Platform
Emerging Differentiators of a Successful Wealtlh Management Platform
 
Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03Gamma Advisory Services 2014/03
Gamma Advisory Services 2014/03
 
Blog 2016 16 - The Future is Now
Blog 2016 16 - The Future is NowBlog 2016 16 - The Future is Now
Blog 2016 16 - The Future is Now
 
2017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 20172017 Top Issues - Changing Business Models - January 2017
2017 Top Issues - Changing Business Models - January 2017
 
Blog 2016 12 - EAD - IFRS 9 Ramifications
Blog 2016 12 - EAD - IFRS 9 RamificationsBlog 2016 12 - EAD - IFRS 9 Ramifications
Blog 2016 12 - EAD - IFRS 9 Ramifications
 
2017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 20172017 Top Issues - DOL Fiduciary Rule - January 2017
2017 Top Issues - DOL Fiduciary Rule - January 2017
 
"Credit
"Credit"Credit
"Credit
 
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
Benefits-of-Financial-Technology-for-Banks_RMA Jan 2017
 
Blog 2016 01
Blog 2016 01Blog 2016 01
Blog 2016 01
 
Risk dk
Risk dkRisk dk
Risk dk
 
John_Lazcano_C_V
John_Lazcano_C_VJohn_Lazcano_C_V
John_Lazcano_C_V
 
Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics Frost&Sullivan Report: Business Analytics
Frost&Sullivan Report: Business Analytics
 
Compliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset thresholdCompliance implications of crossing the $10 billion asset threshold
Compliance implications of crossing the $10 billion asset threshold
 
FENG CCAR DFAST BASELIII_real(2)
FENG CCAR DFAST BASELIII_real(2)FENG CCAR DFAST BASELIII_real(2)
FENG CCAR DFAST BASELIII_real(2)
 
Blog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory AuditorBlog 2016 07 -Target Operating Model and Role of Statutory Auditor
Blog 2016 07 -Target Operating Model and Role of Statutory Auditor
 
IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?IFRS 9 IT Architecture : Go Strategic or Tactical ?
IFRS 9 IT Architecture : Go Strategic or Tactical ?
 
In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02In Sight Quantifi Newsletter Issue 02
In Sight Quantifi Newsletter Issue 02
 
Impact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital PlanningImpact of Recent Supervisory Guidance on Capital Planning
Impact of Recent Supervisory Guidance on Capital Planning
 
Keys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycleKeys to extract value from the data analytics life cycle
Keys to extract value from the data analytics life cycle
 

Similar to Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital Transformation

5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer Needs5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer NeedsAlisa Karybina
 
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...Jacob Kosoff
 
Tiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and ReliabilityTiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and ReliabilityCognizant
 
IFRS 9 Model Risk Management - Given the Short Shift ?
IFRS 9 Model Risk Management - Given the Short Shift ?IFRS 9 Model Risk Management - Given the Short Shift ?
IFRS 9 Model Risk Management - Given the Short Shift ?Sandip Mukherjee CFA, FRM
 
Accenture_Rethink_the_Digital_Prop
Accenture_Rethink_the_Digital_PropAccenture_Rethink_the_Digital_Prop
Accenture_Rethink_the_Digital_PropJessica Townsend
 
eBook Spreadsheet to WebAPP
eBook Spreadsheet to WebAPPeBook Spreadsheet to WebAPP
eBook Spreadsheet to WebAPPAbhishek Ranjan
 
DEFINITION.docx
DEFINITION.docxDEFINITION.docx
DEFINITION.docxAbdetaImi
 
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...A New Approach to Application Portfolio Assessment for New-Age Business-Techn...
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...Cognizant
 
Anatomy Of Business Impact Management Using SMAC
Anatomy Of Business Impact Management Using SMACAnatomy Of Business Impact Management Using SMAC
Anatomy Of Business Impact Management Using SMACLisa Garcia
 
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...alekn
 
CIMCON Software - model risk management.ppt
CIMCON Software - model risk management.pptCIMCON Software - model risk management.ppt
CIMCON Software - model risk management.pptCIMCON Software
 
An Empirical Evaluation of Capability Modelling using Design Rationale.pdf
An Empirical Evaluation of Capability Modelling using Design Rationale.pdfAn Empirical Evaluation of Capability Modelling using Design Rationale.pdf
An Empirical Evaluation of Capability Modelling using Design Rationale.pdfSarah Pollard
 
KPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeKPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeNanda Thiruvengadam
 
Digitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsDigitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsRadhakrishnan Iyer
 
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONSREFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONScscpconf
 
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONSREFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONScsandit
 

Similar to Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital Transformation (20)

5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer Needs5 AI Solutions Every Chief Risk Officer Needs
5 AI Solutions Every Chief Risk Officer Needs
 
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
Rethinking Analytics, Analytical Processes, and Risk Architecture Across the ...
 
Tiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and ReliabilityTiered Application Management: Meeting the Need for Speed and Reliability
Tiered Application Management: Meeting the Need for Speed and Reliability
 
IFRS 9 Model Risk Management - Given the Short Shift ?
IFRS 9 Model Risk Management - Given the Short Shift ?IFRS 9 Model Risk Management - Given the Short Shift ?
IFRS 9 Model Risk Management - Given the Short Shift ?
 
Accenture_Rethink_the_Digital_Prop
Accenture_Rethink_the_Digital_PropAccenture_Rethink_the_Digital_Prop
Accenture_Rethink_the_Digital_Prop
 
eBook Spreadsheet to WebAPP
eBook Spreadsheet to WebAPPeBook Spreadsheet to WebAPP
eBook Spreadsheet to WebAPP
 
DEFINITION.docx
DEFINITION.docxDEFINITION.docx
DEFINITION.docx
 
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...A New Approach to Application Portfolio Assessment for New-Age Business-Techn...
A New Approach to Application Portfolio Assessment for New-Age Business-Techn...
 
Anatomy Of Business Impact Management Using SMAC
Anatomy Of Business Impact Management Using SMACAnatomy Of Business Impact Management Using SMAC
Anatomy Of Business Impact Management Using SMAC
 
CCAR - Kocis
CCAR - KocisCCAR - Kocis
CCAR - Kocis
 
Cloud computing for banking
Cloud computing for bankingCloud computing for banking
Cloud computing for banking
 
Cloud computing for banking
Cloud computing for bankingCloud computing for banking
Cloud computing for banking
 
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...
Towards enterprise-ready AI deployments: Minimizing the risk of consuming AI ...
 
SR 11-7
SR 11-7SR 11-7
SR 11-7
 
CIMCON Software - model risk management.ppt
CIMCON Software - model risk management.pptCIMCON Software - model risk management.ppt
CIMCON Software - model risk management.ppt
 
An Empirical Evaluation of Capability Modelling using Design Rationale.pdf
An Empirical Evaluation of Capability Modelling using Design Rationale.pdfAn Empirical Evaluation of Capability Modelling using Design Rationale.pdf
An Empirical Evaluation of Capability Modelling using Design Rationale.pdf
 
KPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for ChangeKPMG - BCBS239_Bracing for Change
KPMG - BCBS239_Bracing for Change
 
Digitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsDigitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue Solutions
 
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONSREFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
 
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONSREFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
REFERENCE ARCHITECTURE FOR SMAC SOLUTIONS
 

Recently uploaded

GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]📊 Markus Baersch
 
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPramod Kumar Srivastava
 
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...dajasot375
 
20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdfHuman37
 
Call Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceCall Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceSapana Sha
 
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...soniya singh
 
Customer Service Analytics - Make Sense of All Your Data.pptx
Customer Service Analytics - Make Sense of All Your Data.pptxCustomer Service Analytics - Make Sense of All Your Data.pptx
Customer Service Analytics - Make Sense of All Your Data.pptxEmmanuel Dauda
 
How we prevented account sharing with MFA
How we prevented account sharing with MFAHow we prevented account sharing with MFA
How we prevented account sharing with MFAAndrei Kaleshka
 
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一F sss
 
Call Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceCall Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceSapana Sha
 
Dubai Call Girls Wifey O52&786472 Call Girls Dubai
Dubai Call Girls Wifey O52&786472 Call Girls DubaiDubai Call Girls Wifey O52&786472 Call Girls Dubai
Dubai Call Girls Wifey O52&786472 Call Girls Dubaihf8803863
 
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...Suhani Kapoor
 
Schema on read is obsolete. Welcome metaprogramming..pdf
Schema on read is obsolete. Welcome metaprogramming..pdfSchema on read is obsolete. Welcome metaprogramming..pdf
Schema on read is obsolete. Welcome metaprogramming..pdfLars Albertsson
 
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样vhwb25kk
 
Brighton SEO | April 2024 | Data Storytelling
Brighton SEO | April 2024 | Data StorytellingBrighton SEO | April 2024 | Data Storytelling
Brighton SEO | April 2024 | Data StorytellingNeil Barnes
 
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...ThinkInnovation
 
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptx
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptxEMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptx
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptxthyngster
 

Recently uploaded (20)

GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]
 
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
 
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
 
20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf20240419 - Measurecamp Amsterdam - SAM.pdf
20240419 - Measurecamp Amsterdam - SAM.pdf
 
Call Girls in Saket 99530🔝 56974 Escort Service
Call Girls in Saket 99530🔝 56974 Escort ServiceCall Girls in Saket 99530🔝 56974 Escort Service
Call Girls in Saket 99530🔝 56974 Escort Service
 
Deep Generative Learning for All - The Gen AI Hype (Spring 2024)
Deep Generative Learning for All - The Gen AI Hype (Spring 2024)Deep Generative Learning for All - The Gen AI Hype (Spring 2024)
Deep Generative Learning for All - The Gen AI Hype (Spring 2024)
 
Call Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceCall Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts Service
 
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...
High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...
 
Customer Service Analytics - Make Sense of All Your Data.pptx
Customer Service Analytics - Make Sense of All Your Data.pptxCustomer Service Analytics - Make Sense of All Your Data.pptx
Customer Service Analytics - Make Sense of All Your Data.pptx
 
How we prevented account sharing with MFA
How we prevented account sharing with MFAHow we prevented account sharing with MFA
How we prevented account sharing with MFA
 
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
办理学位证中佛罗里达大学毕业证,UCF成绩单原版一比一
 
Call Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceCall Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts Service
 
Dubai Call Girls Wifey O52&786472 Call Girls Dubai
Dubai Call Girls Wifey O52&786472 Call Girls DubaiDubai Call Girls Wifey O52&786472 Call Girls Dubai
Dubai Call Girls Wifey O52&786472 Call Girls Dubai
 
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...
VIP High Class Call Girls Jamshedpur Anushka 8250192130 Independent Escort Se...
 
Schema on read is obsolete. Welcome metaprogramming..pdf
Schema on read is obsolete. Welcome metaprogramming..pdfSchema on read is obsolete. Welcome metaprogramming..pdf
Schema on read is obsolete. Welcome metaprogramming..pdf
 
꧁❤ Aerocity Call Girls Service Aerocity Delhi ❤꧂ 9999965857 ☎️ Hard And Sexy ...
꧁❤ Aerocity Call Girls Service Aerocity Delhi ❤꧂ 9999965857 ☎️ Hard And Sexy ...꧁❤ Aerocity Call Girls Service Aerocity Delhi ❤꧂ 9999965857 ☎️ Hard And Sexy ...
꧁❤ Aerocity Call Girls Service Aerocity Delhi ❤꧂ 9999965857 ☎️ Hard And Sexy ...
 
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
 
Brighton SEO | April 2024 | Data Storytelling
Brighton SEO | April 2024 | Data StorytellingBrighton SEO | April 2024 | Data Storytelling
Brighton SEO | April 2024 | Data Storytelling
 
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
 
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptx
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptxEMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptx
EMERCE - 2024 - AMSTERDAM - CROSS-PLATFORM TRACKING WITH GOOGLE ANALYTICS.pptx
 

Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital Transformation

  • 1. The RMA Journal September 2020 | Copyright 2020 by RMA 28 Adopting a Top-Down Approach to Model Risk Governance to Optimize Digital MODEL RISK MANAGEMENT/TECHNOLOGY Transformation
  • 2. September 2020 The RMA Journal 29 Several of the recent trends emerging from the COVID-19 pandemic, such as low-contact consumer commerce, the stay-at-home economy, rapidly evolving credit risk due to the closure of parts of the economy, and virtual integrations with vendors have prompted banks to accelerate key projects. This article explores how banks are accelerating improvements to the customer experience and automating manual processes by fundamentally transforming their model risk management processes. The article will specifically address how banks are adopting a top-down approach to model gov- ernance that inventories the business capabilities of models, identifies essential business outputs derived from models, and determines which model capabilities are most critical to these processes. This approach identifies unused model capabilities that could enable automation and improve busi- ness insights. Additionally, a top-down approach would create transparency around potential gaps in model capabilities needed to support the strategic direction of the bank. BY AARON BRIDGERS, HENRY LEE, AND JACOB KOSOFF
  • 3. The RMA Journal September 2020 | Copyright 2020 by RMA 30 A focus on model capabilities that support critical processes aligns model governance with recent trends in banking technology architecture be- ing pursued by member banks of the Bank Industry Architecture Network (BIAN). For this approach to be suc- cessful, model risk groups would need to keep pace with the evolving land- scape of quantitative modeling driven by the software community, as well as learn new technical skills. Assessing the technology attributes of models such as interoperability and scalability will be as important as the veracity of the underlying mathematics. Traditional model risk management programs typically start by creating a policy definition of a model that is based on the mathematical approach, or lack thereof, taken to solve a business problem. The definition of a model is usually broad enough to meet regula- tory expectations found in the Federal Reserve’s SR 11-7 Supervisory Guid- ance on Model Risk Management, but narrow enough to not include every spreadsheet at the bank. Model risk groups take a bottom-up approach by first identifying all potential models as the fundamental unit of observation and determining the use of each model across processes. Model risk groups then begin performing model risk activities on each item that meets the definition of a model. These activities include classifying risk, validating the current uses, evaluating ongoing monitoring, and evaluating model changes. This approach was an important beginning for the field of model risk manage- ment, as it helped identify existing models, discover fundamental errors in existing models, and prevent inap- propriate use of models. However, the traditional bottom-up approach may have shortcomings that could hinder digital transformation at banks. First, it is difficult to apply the definition of a model to complex processes such as artificial intelligence- driven customer support, which require generation of regulatory reporting, and digital customer journeys. Model development and risk practitioners can connect with peers in the business and IT architecture to understand current processes as well as what processes could be improved through employing model capabilities. Model risk groups would focus tra- ditional model risk testing activities on the most important processes. These traditional activities should be coupled with modern model risk evaluations to ensure that models are interoperable across processes and that models scale based on the expected volume of each process. These tests would align with the SR 11-7 requirement that “model calculations should be properly coordi- nated with the capabilities and require- ments of information systems.” “Sound model risk management,” the guidelines note, “depends on substantial investment in supporting systems to ensure data and reporting integrity, together with controls and testing to ensure proper implementa- tion of models, effective systems inte- gration, and appropriate use.”1 Model risk groups could modern- ize their inventories to include discrete business capabilities and indicate which models are accessible through APIs, and facilitate automation by en- couraging the use of APIs and creating awareness around the model capabili- ties within the business and IT archi- tecture. Automation can be further enabled by also identifying model capability gaps or gaps in interoper- ability. Models that are interoperable using APIs would allow model risk groups to automate and scale many of their testing processes as well. Finally, a model risk framework that focuses on model-driven busi- ness capabilities accessible through APIs would create more efficient and effective processes. The use of mi- croservices has been made popular by technology companies that use an API business model. Microservices enable companies to react quickly to O n P revious P age : S hutterstock . com many predictive calculations. This can result in redundant model risk activi- ties and difficulty discerning the real impact these models have on business decisions. Second, model risk teams of- ten focus only on processes that already include models and do not identify pro- cesses that would be significantly im- proved by using models. This results in model risk teams overlooking modeling capabilities that a process truly needs. Third, the bottom-up approach does not align with the digital transforma- tion occurring at banks through the creation of business capability appli- cation programming interfaces (APIs) and microservices, which are primary enablers of process automation. A top-down approach, also called a business capability approach, would al- low banks to better think through the component pieces of their processes, build microservices on top of those component pieces, and allow compa- nies to build flexible, cost-effective IT infrastructures that can quickly adapt to customer needs. In other words, the top- down approach focuses on reimagining bank operations as a set of microservices built on top of defined business capabili- ties that are accessed through APIs. In recent times, this approach has evolved into services offered through containers within the cloud. Model risk activities that focus on the definition of a model instead of the business capabilities of- fered by models may slow down digital transformation. A model risk program that uses a top-down approach would focus on improving processes with models and improving the model risk management processes around models. This type of approach could improve risk manage- ment by evaluating the most important business outputs and their associated processes to identify any models cur- rently being used and necessary model capabilities that are not being used ef- fectively. Key business processes may include origination and servicing of bank products, enablement of bank ser- vices, creation of financial statements,
  • 4. September 2020 The RMA Journal 31 customer needs, integrate with third- party partners, rapidly re-engineer processes, reduce overall IT spend, and scale quickly. The banking in- dustry has formed the not-for-profit BIAN to rethink bank processes, in- cluding quantitative models using the service-driven design through APIs. Models can serve as components of mi- croservices, but this would inherently change the focus from primarily math- ematical techniques to include heavy consideration of model architecture. At the corporate level, outputs meant for external consumption, such as financial statements and regulatory reports, are being fed by a network of models. Furthermore, there are stra- tegic decisions being made internally about risk and risk appetite, which are also supported by models. Identifying these final important outputs provides focus and elucidates the models and data that feed them. This is a perfect opportunity for banks to simplify and automate their operations. This top-down approach will help banks learn where they need models and will provide opportunities to build in elements of API services, which may be expanded over time. Consider how many models are used in commercial credit. Often, several lines of businesses have commercial credit exposure, each with their own models. There are often separate models for each portfolio and product; even if they have different inputs, they are producing the same fundamental out- puts. Charge-off models depend upon PD, EAD, LGD models, etc. PPNR models use expected interest and non- interest revenues and expenses. The top-level models in the process should be targeted first. While the inputs to these models will be calculated differently de- pending upon the financial product and other characteristics, much of the redundancy may be eliminated through modularization and a ser- vice-driven business model. These modules are independent and can be used across multiple portfolios if developed as generalized modules and built with scalability in mind. The upstream models that produce the idiosyncratic inputs to these modules can then be streamlined in successive phases to make the transformation manageable. In conclusion, managing model risk through this top-down approach cre- ates four main benefits: • It improves risk management ef- fectiveness by focusing risk man- agement resources on models that impact real business outcomes. • It cuts costs by greatly reducing model risk activities spent on mod- els and processes that pose little or no risk. • It draws attention to unused model capabilities. • It facilitates process automation and enables digital transformation by aligning models to the standards maintained by the Bank Industry Architecture Network. The opinions expressed in the article are statements of the authors’ opinion, are intended only for infor- mational purposes, and are not formal opinions of, nor binding on Regions Bank, its parent company, Regions Financial Corporation and their subsid- iaries, and any representation to the contrary is expressly disclaimed. Notes 1. https://www.federalreserve.gov/supervisionreg/ srletters/sr1107a1.pdf, page 7. JACOB KOSOFF is a senior vice president and head of model risk management and validation at Regions Bank. He can be reached at Jacob.Kosoff@Regions.com. HENRY LEE, PH.D. is a senior risk and financial intelligence consultant at the SAS Institute. He can be reached at reareached at henry.lee@sas.com. AARON BRIDGERS is a senior vice president and the head of risk testing optimization at Regions Bank. He can be reached at Aaron.Bridgers@Regions.com. "Models that are interoperable using APIs would allow model risk groups to automate and scale many of their testing processes."