CHAPTER 17Best Practices in Related Risk Management Activities

There are many activities within a fintech or bank that manage a specific operational risk or subset of operational risks. Each of these may have existed well before the operational risk corporate function was formed and may be owned by specialists in that field. In addition to meeting all operational risk regulatory and business requirements, these risk areas often have their own unique regulations and business drivers.

As discussed in Chapter 16, the operational risk department must forge strong relationships with these areas in order to ensure the success of the framework and to ensure consistency in reporting and escalation of operational risks throughout the firm.

In this chapter, we will learn some more about each of these unique areas and their best practices.

NEW-PRODUCT APPROVAL

One of the most effective weapons against Clients, Products, and Business Practices events is a robust new-product approval process. This control should be designed to ensure that all risks are considered when a new product is being proposed. The market and credit risks may be well understood by those involved in proposing the new product, but they may be unaware of the resulting operational risks that may arise. Therefore, a new-product proposal should be reviewed by the legal, compliance, tax, information technology (IT), information security, business continuity, model governance, third-party risk management, operations, and ...

Get Operational Risk Management, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.