KISS - Keep it Simple Silly: ERM Guidance in laymens terms
Enterprise Risk Management, or “ERM” for short, came into clear focus when, in 2000, the Office of the Comptroller of the Currency (OCC) issued Bulletin OCC 2000-16 on Risk Modeling. For the first time, the agency was expressing its concerns about how [national] banks were measuring risk exposure across all aspects of their operations. In the years following, the OCC, FDIC, FRB and FFIEC issued literally hundreds of guidance letters on ERM and community banks have wrestled with how to cope with the Risk Management process ever since.
And, it’s not getting easier. See the OCC’s recent announcement regarding the strengthening of its Risk Analysis Division by appointing a Deputy Controller for Risk Analysis (see OCC News Release 2011-153) who “will play a vital role in the OCC’s supervision of national banks, and, as a group, they provide the expertise we depend on to ensure that banks use quantitative models safely and effectively.” Then there is the FDIC’s recent press release: “The Board of Directors of the Federal Deposit Insurance Corporation (FDIC) today approved the organizational plan of the Office of Corporate Risk Management (OCRM) that will assess external and internal risks faced by the FDIC.” These announcements suggest the OCC and FDIC will be intensifying their scrutiny on ERM initiatives at community banks in 2012 and beyond. So, how can you prepare?
In our first installment entitled “Use the CUBE”, we broke down the elements of the Basel Commission’s Integrated Framework so you could see how the ERM process works. If you missed it, ask for a copy by contacting us at rmaslac@tracerisk.com
